126 matches found
CVE-2026-4843
The CVE-2026-4843 entry concerns the WordPress plugin “GSheet For Woo Importer.” All versions up to 2.3.1 are affected by a missing capability check in process_ajax_restore_action(), enabling authenticated users with Subscriber-level access or higher to delete the plugin’s Google Sheets API token...
MINI-WCRH-4843-G8XW
Bulletin has no description...
CVE-2026-20403
In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch I...
PT-2026-5626
Name of the Vulnerable Software and Affected Versions Modem affected versions not specified Description A missing bounds check in the Modem software could lead to a system crash and a remote denial of service. This scenario occurs if a User Equipment UE connects to a rogue base station controlled...
EUVD-2026-4843
ASDA-Soft Stack-based Buffer Overflow Vulnerability...
CVE-2018-4843
A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 All versions V7.0.3, SIMATIC S7-400 CPU 414F-3 PN/DP V7 All versions V7.0.3, SIMATIC S7-400 CPU 416-3 PN/DP V7 All versions V7.0.3, SIMATIC S7-400 CPU 416F-3 PN/DP V7 All versions V7.0.3, SIMATIC CP 343-1 incl. SIPLUS varian...
CGA-GVFX-4843-PGMV
Bulletin has no description...
CVE-2005-4843
The SmartConnect Class control allows remote attackers to cause a denial of service Internet Explorer crash by creating a COM object of the class associated with the control's CLSID, which is not intended for use within Internet Explorer...
openSUSE: Security Advisory for python3 (SUSE-SU-2023:4843-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-49406
Tenda W30E V16.01.0.124843 was discovered to contain a Command Execution vulnerability via the function /goform/telnet...
CVE-2023-49411
Tenda W30E V16.01.0.124843 contains a stack overflow vulnerability via the function formDeleteMeshNode...
CVE-2023-49404
Tenda W30E V16.01.0.124843 was discovered to contain a stack overflow via the function formAdvancedSetListSet...
CVE-2023-49999
Tenda W30E V16.01.0.124843 was discovered to contain a command injection vulnerability via the function setUmountUSBPartition...
Stack overflow
Tenda W30E V16.01.0.124843 was discovered to contain a stack overflow via the function via the function setwanstatus...
CVE-2023-49404
Tenda W30E V16.01.0.124843 was discovered to contain a stack overflow via the function formAdvancedSetListSet...
Tenda W30E 安全漏洞
The Tenda W30E is a router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda W30E version V16.01.0.124843, which originates from a failure of the formResetMeshNode function to correctly validate the length of the input data, and can be exploited by a remote attacker ...
CVE-2023-49402
CVE-2023-49402 affects Tenda W30E (V16.01.0.12(4843)). A stack overflow in the localMsg function is described as the root cause, with practical impact stated as remote code execution or denial of service in multiple sources. Public data indicates a high-severity, network-based vulnerability (CVSS...
CVE-2023-49403
CVE-2023-49403 affects Tenda W30E, specifically version V16.01.0.12(4843). The vulnerability is a command injection in the setFixTools function, allowing an attacker to execute arbitrary commands (potential remote code execution) and is reported with a high impact (NVD CVSS 3.1 base score 9.8). S...
CVE-2023-49410
Tenda W30E is affected (V16.01.0.12(4843)). The issue is a stack overflow in the set_wan_status function caused by improper input length validation. Attack details are not consistently provided across sources, but multiple references describe remote code execution or denial of service potential. ...
CVE-2023-49999
The CVE-2023-49999 entry concerns the Tenda W30E router, specifically firmware version 16.01.0.12(4843). The flaw is a command injection in the setUmountUSBPartition function, caused by insufficient filtering of constructor command characters, enabling arbitrary command execution. Documents indic...