20 matches found
Exploit for CVE-2025-12197
Security Research This repository contains my security resea...
CVE-2025-12197
creationtimestamp| type| source ---|---|--- 2025-11-05 06:20:48+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m4uftdqnuwq2 2025-11-05 07:11:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m4uioomzzd2s 2025-11-05 07:42:40+00:00| seen|...
CVE-2024-12197
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...
CVE-2024-12197
creationtimestamp| type| source ---|---|--- 2024-12-17 17:36:53+00:00| seen| https://t.me/cvedetector/13107 2024-12-19 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1708/...
CVE-2024-12197
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...
CVE-2024-12197 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...
CVE-2024-12197 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...
CVE-2024-12197
CVE-2024-12197 describes an Out-of-Bounds Write in Autodesk Navisworks when parsing a malicious DWFX file. The underlying issue is improper validation during DWFX parsing, allowing a crafted file to cause a crash, data corruption, or arbitrary code execution in the context of the current process....
Updated libpam4j package fixes security vulnerability
It was discovered that libpam4j, a Java library wrapper for the integration of PAM did not call pamacctmgmt during authentication. As such a user who has a valid password, but a deactivated or disabled account could still log in CVE-2017-12197...
CVE-2017-12197
CVE-2017-12197 affects libpam4j (Java PAM wrapper) up to and including 1.8, where authentication did not correctly enforce account status because pam_acct_mgmt() was not called. A user with a valid password for a disabled/deactivated account could bypass restrictions and access sensitive informat...
CVE-2017-12197
Removed by vendor...
[SECURITY] [DSA 4025-1] libpam4j security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4025-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 08, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1165-1] libpam4j security update
Package : libpam4j Version : 1.4-2+deb7u1 CVE ID : CVE-2017-12197 Debian Bug : 879001 It was discovered that libpam4j, a Java binding for libpam.so, does not call pamacctmgmt. As a consequence, the PAM account is not properly verified. Any user with a valid password but with deactivated or disabl...
RHEL 7 : rh-sso7-keycloak (RHSA-2017:2905)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:2905 advisory. Red Hat Single Sign-On is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-o...
RHEL 6 : rh-sso7-keycloak (RHSA-2017:2904)
An update for rh-sso7-keycloak is now available for Red Hat Single Sign-On 7.1 for RHEL 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: Red Hat Security Advisory: rh-sso7-keycloak security update
An update for rh-sso7-keycloak is now available for Red Hat Single Sign-On 7.1 for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: Red Hat Security Advisory: rh-sso7-keycloak security update
An update for rh-sso7-keycloak is now available for Red Hat Single Sign-On 7.1 for RHEL 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2017-12197
It was found that libpam4j did not properly validate user accounts when authenticating. A user with a valid password for a disabled account would be able to bypass security restrictions and possibly access sensitive information...
Moderate: Red Hat Security Advisory: Red Hat Single Sign-On security update
Red Hat Single Sign-On 7.1.3 is now available for download from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2018-12197
CVE-2018-12197 entry is rejected/not used per description.