| 844 | Unit 42 Finds Three Vulnerabilities in OpenLiteSpeed Web Server |
RCE
OS command injection
Path traversal
Local Privilege Escalation |
LiteSpeed |
Artur Avetisyan (@3v1LMonk3y) |
Bug Bounty | 2022-11-10 | 2023-06-13 |
| 842 | Windows Kernel: Exploit CVE-2022-35803 in Common Log File System |
Windows
Local Privilege Escalation
Type confusion |
Microsoft |
luckyu (@uuulucky) |
Bug Bounty | 2022-11-11 | 2023-06-13 |
| 837 | CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS |
MacOS
Local Privilege Escalation
SIP bypass |
Apple |
Mickey Jin (@patch1t) |
Bug Bounty | 2022-11-11 | 2023-06-13 |
| 833 | CVE-2022-32929 - Bypass iOS backup%27s TCC protection |
Local Privilege Escalation
TCC bypass
MacoS
iOS |
Apple |
Csaba Fitzl (@theevilbit) |
Bug Bounty | 2022-11-14 | 2023-06-13 |
| 831 | SSD Advisory – Cisco Secure Manager Appliance jwt_api_impl Hardcoded JWT Secret Elevation of Privilege |
Hardcoded credentials
Security code review
JWT
Privilege escalation |
Cisco |
- |
Bug Bounty | 2022-11-14 | 2023-06-13 |
| 815 | MEGA’s Unlimited Cloud Storage Vulnerability |
Logic flaw
Privilege escalation |
MEGA |
Nirmal Dahal (@TheNittam) |
Bug Bounty | 2022-11-17 | 2023-06-13 |
| 810 | macOS Sandbox Escape vulnerability via Terminal |
MacOS
Sandbox escape
Local Privilege Escalation |
Apple |
Wojciech Reguła (@_r3ggi) |
Bug Bounty | 2022-11-18 | 2023-06-13 |
| 797 | A Confused Deputy Vulnerability in AWS AppSync |
Confused deputy
Cloud
Privilege escalation |
AWS |
Nick Frichette (@frichette_n) |
Bug Bounty | 2022-11-21 | 2023-06-13 |
| 784 | From Zero to Hero Part 1: Bypassing Intel DCM’s Authentication by Spoofing Kerberos and LDAP Responses (CVE-2022-33942) |
Authentication bypass
Kerberos
RCE
Privilege escalation
Security code review |
Intel |
Julien Ahrens (@MrTuxracer) |
Bug Bounty | 2022-11-23 | 2023-06-13 |
| 761 | Broken access control + misconfiguration = Beautiful privilege escalation |
Broken Access Control
Privilege escalation |
NA |
Hossam Mesbah (@m359ah) |
Bug Bounty | 2022-11-28 | 2023-06-13 |
| 760 | discord.exe – Improper Input Validation |
Security code review
Local Privilege Escalation
Phishing |
Discord |
RiotSecTeam (@RiotSecTeam) |
Bug Bounty | 2022-11-28 | 2023-06-13 |
| 756 | Brocade Fabric OS ≤ v8.0.2c rbash escape to read system files |
rbash escape
Local Privilege Escalation |
Broadcom |
Bitcrack (@bitcrack_cyber) |
Bug Bounty | 2022-11-29 | 2023-06-13 |
| 749 | Hell’s Keychain: Supply-chain vulnerability in IBM Cloud Databases for PostgreSQL allows potential for unauthorized database access |
Cloud
SQL injection
Privilege escalation
Information disclosure |
IBM |
Ronen Shustin (@ronenshh) |
Bug Bounty | 2022-12-01 | 2023-06-13 |
| 746 | From Zero to Hero Part 2: From SQL Injection to RCE on Intel DCM (CVE-2022-21225) |
SQL injection
Kerberos
RCE
Privilege escalation
Security code review |
Intel |
Julien Ahrens (@MrTuxracer) |
Bug Bounty | 2022-12-01 | 2023-06-13 |
| 742 | Multiple Vulnerabilities in Proxmox VE & Proxmox Mail Gateway |
XSS
CRLF injection
SSRF
LFI
Local Privilege Escalation
Arbitrary file read |
Proxmox |
JianTao Li (@cursered) |
Bug Bounty | 2022-12-02 | 2023-06-13 |
| 741 | CertPotato – Using ADCS to privesc from virtual and network service accounts to local system |
Local Privilege Escalation
ADCS |
Microsoft |
Hocine Mahtout (@Sant0rryu) |
Bug Bounty | 2022-12-02 | 2023-06-13 |
| 738 | SysmonEoP |
Local Privilege Escalation
Windows |
Microsoft |
Filip Dragovic (@filip_dragovic) |
Bug Bounty | 2022-12-03 | 2023-06-13 |
| 715 | Privilege Escalation to remove the owner from the organization |
Privilege escalation
Mass assignment |
NA |
Hemant Kumar |
Bug Bounty | 2022-12-09 | 2023-06-13 |
| 713 | Public Report – VPN by Google One Security Assessment |
Android
iOS
DoS
Windows
MacoS
Local Privilege Escalation |
Google |
Daniel Romero (@daniel_rome) |
Bug Bounty | 2022-12-09 | 2023-06-13 |
| 700 | CVE-2019–6238: Apple XAR directory traversal vulnerability |
Local Privilege Escalation |
Apple |
Yiğit Can Yılmaz |
Bug Bounty | 2022-12-13 | 2023-06-13 |
| 699 | AWS ECR Public Vulnerability |
Cloud
Privilege escalation
Broken Access Control |
AWS |
Gafnit Amiga (@gafnitav) |
Bug Bounty | 2022-12-13 | 2023-06-13 |
| 695 | Privilege escalation leads to deleting other user’s account and company Workspace [Access Control] |
Privilege escalation
Broken Access Control |
NA |
Pratik Gaikwad |
Bug Bounty | 2022-12-14 | 2023-06-13 |
| 681 | Gatekeeper’s Achilles heel: Unearthing a macOS vulnerability |
Local Privilege Escalation
GateKeeper bypass |
Apple (macOS) |
Jonathan Bar Or (@yo_yo_yo_jbo) |
Bug Bounty | 2022-12-17 | 2023-06-13 |
| 672 | Diving into an Old Exploit Chain and Discovering 3 new SIP-Bypass Vulnerabilities |
MacOS
Local Privilege Escalation
SIP bypass |
Apple (macOS) |
Mickey Jin (@patch1t) |
Bug Bounty | 2022-12-20 | 2023-06-13 |
| 670 | A Technical Analysis of CVE-2022-22583 and CVE-2022-32800 |
MacOS
Local Privilege Escalation
SIP bypass |
Apple (macOS) |
Mickey Jin (@patch1t) |
Bug Bounty | 2022-12-21 | 2023-06-13 |
