17 matches found
CVE-2025-12956
creationtimestamp| type| source ---|---|--- 2025-12-08 11:04:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7hv3mrdkw2j 2025-12-09 03:53:18+00:00| seen| https://bsky.app/profile/cyber-news-fi.bsky.social/post/3m7jnh22nbt2n 2026-01-12 19:06:39+00:00| published-proof-of-concept|...
CVE-2025-12956
CVE-2025-12956 is a reflected XSS vulnerability in ENOVIA Collaborative Industry Innovator affecting Release 3DEXPERIENCE R2022x through R2025x. The issue allows an attacker to run arbitrary script in a user’s browser session. Connected sources confirm the affected product and versions and descri...
Linux Distros Unpatched Vulnerability : CVE-2017-12956
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is an illegal address access in Exiv2::FileIo::pathabi:cxx11 in basicio.cpp of libexiv2 in Exiv2 0.26 that will lead to remote denial of service...
CVE-2024-12956
CVE-2024-12956 affects 1000 Projects Portfolio Management System MCA 1.0. The vulnerability is due to improper handling of the parameter ach_certy in /add_achievement_details.php, enabling unrestricted file upload. This can be triggered remotely and exploitation has been publicly disclosed. Sever...
CVE-2024-12956 1000 Projects Portfolio Management System MCA add_achievement_details.php unrestricted upload
A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0 and classified as critical. This issue affects some unknown processing of the file /addachievementdetails.php. The manipulation of the argument achcerty leads to unrestricted upload. The attack may be initiated remotel...
CVE-2024-12956 1000 Projects Portfolio Management System MCA add_achievement_details.php unrestricted upload
A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0 and classified as critical. This issue affects some unknown processing of the file /addachievementdetails.php. The manipulation of the argument achcerty leads to unrestricted upload. The attack may be initiated remotel...
Mageia: Security Advisory (MGASA-2017-0391)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-12956
CVE-2020-12956 is rejected/not used; the candidate was not assigned to issues in 2020.
CVE-2020-12956
...
CVE-2021-34291
A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The Gifloader.dll library in affected applications lacks proper validation of user-supplied data when parsing GIF files. This could result in an out of bounds write past the end of an...
CVE-2021-34291
Siemens JT2Go (before 13.2) and Teamcenter Visualization (before 13.2) are affected by CVE-2021-34291 due to Gif_loader.dll failing to validate GIF data, causing an out-of-bounds write that could allow code execution in the current process. Connected sources confirm the vulnerability in GIF parsi...
openSUSE Security Update : exiv2 (openSUSE-2019-504)
This update for exiv2 to 0.26 fixes the following security issues : - CVE-2017-14864: Prevent invalid memory address dereference in Exiv2::getULong that could have caused a segmentation fault and application crash, which leads to denial of service bsc1060995. - CVE-2017-14862: Prevent invalid...
openSUSE Security Update : exiv2 (openSUSE-2018-727)
This update for exiv2 to 0.26 fixes the following security issues : - CVE-2017-14864: Prevent invalid memory address dereference in Exiv2::getULong that could have caused a segmentation fault and application crash, which leads to denial of service bsc1060995. - CVE-2017-14862: Prevent invalid...
Security update for exiv2 (moderate)
This update for exiv2 to 0.26 fixes the following security issues: - CVE-2017-14864: Prevent invalid memory address dereference in Exiv2::getULong that could have caused a segmentation fault and application crash, which leads to denial of service bsc1060995. - CVE-2017-14862: Prevent invalid memo...
CVE-2017-12956
There is an illegal address access in Exiv2::FileIo::pathabi:cxx11 in basicio.cpp of libexiv2 in Exiv2 0.26 that will lead to remote denial of service...
CVE-2017-12956
There is an illegal address access in Exiv2::FileIo::pathabi:cxx11 in basicio.cpp of libexiv2 in Exiv2 0.26 that will lead to remote denial of service...
CVE-2017-12956
CVE-2017-12956 is an Exiv2/ libexiv2 vulnerability (Exiv2 0.26) caused by illegal address access in Exiv2::FileIo::pathabi:cxx11 in basicio.cpp, leading to remote denial of service. Public records in vendor advisories and Nessus/OpenVAS notes confirm this issue as part of Exiv2 0.26 vulnerabiliti...