14 matches found
CVE-2025-12974
creationtimestamp| type| source ---|---|--- 2025-11-18 05:18:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m5uygj7ukq2s 2025-11-18 07:50:55+00:00| seen| https://gist.github.com/Darkcrai86/19912ebabfe9180a6eba74a5062e1293 2025-12-04 21:02:39+00:00| seen|...
CVE-2024-12974
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Akinsoft ProKuaför allows Cross-Site Scripting XSS. This issue affects ProKuaför: from s1.02.07 before v1.02.08...
Important: ImageMagick
Issue Overview: Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service segmentation fault or possibly execute arbitrary code via vectors involving the offset variable. CVE-2016-5841 ImageMagick 7.0.7-12 Q16, a CPU exhaustion...
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2023-12974)
The remote Oracle Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12974 advisory. 5.4.17-2136.325.5 - perf symbols: Symbol lookup with kcore can fail if multiple segments match stext Krister Johansen Orabug: 35905508 - char: misc: Increa...
CVE-2020-12974
...
CVE-2020-12974
CVE-2020-12974 entry is rejected/not used; does not represent an active vulnerability.
Huawei EulerOS: Security Advisory for ImageMagick (EulerOS-SA-2020-1806)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: Three vulnerabilities in Nimbus JOSE+JWT affect IBM Spectrum Conductor
Summary There are three vulnerabilities in Nimbus JOSE+JWT 3.1.2 used by IBM Spectrum Conductor 2.4.1, IBM Spectrum Conductor 2.4.0 and IBM Spectrum Conductor 2.3.0. IBM Spectrum Conductor 2.4.1, IBM Spectrum Conductor 2.4.0 and IBM Spectrum Conductor 2.3 have addressed the applicable CVEs...
Security Bulletin: Multiple vulnerabilities in Nimbus-JOSE-JWT affect IBM Spectrum Symphony
Summary Multiple vulnerabilities exist in the Nimbus-JOSE-JWT used by IBM Spectrum Symphony V7.3 and V7.2.1. Interim fixes that provide instructions on upgrading the nimbus-jose-jwt package to version 8.10 are available on IBM Fix Central. Vulnerability Details CVEID: CVE-2017-12974 DESCRIPTION:...
CVE-2019-12974
A NULL pointer dereference in the function ReadPANGOImage in coders/pango.c and the function ReadVIDImage in coders/vid.c in ImageMagick 7.0.8-34 allows remote attackers to cause a denial of service via a crafted image...
CVE-2019-12974
ImageMagick 7.0.8-34 contains a NULL pointer dereference in ReadPANGOImage (coders/pango.c) and ReadVIDImage (coders/vid.c) that can be triggered by a crafted image, leading to denial of service. The entry documents this vulnerability and its affected components; no remediation details are provid...
CVE-2019-12974
A NULL pointer dereference in the function ReadPANGOImage in coders/pango.c and the function ReadVIDImage in coders/vid.c in ImageMagick 7.0.8-34 allows remote attackers to cause a denial of service via a crafted image...
CVE-2017-12974
Nimbus JOSE+JWT before 4.36 proceeds with ECKey construction without ensuring that the public x and y coordinates are on the specified curve, which allows attackers to conduct an Invalid Curve Attack in environments where the JCE provider lacks the applicable curve validation...
CVE-2017-12974
CVE-2017-12974 is a confirmed Nimbus JOSE+JWT vulnerability where ECKey construction proceeds without validating that public x/y coordinates lie on the specified curve, enabling an Invalid Curve Attack in environments lacking curve validation. Connected documents confirm this issue across multipl...