| 1231 | CVE-2022-30216 - Authentication coercion of the Windows “Server” service |
Off-by-one Error
Authentication coercion |
Microsoft |
Ben Barnea (@nachoskrnl) |
Bug Bounty | 2022-08-13 | 2023-06-13 |
| 1218 | CVE-2022-30211: Windows L2TP VPN Memory Leak and Use after Free Vulnerability |
Memory corruption
RCE |
Microsoft |
Alex Nichols (@i4mchr00t) |
Bug Bounty | 2022-08-15 | 2023-06-13 |
| 1187 | Break Me Out Of Sandbox In Old Pipe - CVE-2022-22715 Windows Dirty Pipe |
Local Privilege Escalation |
Microsoft |
k0shl (@KeyZ3r0) |
Bug Bounty | 2022-08-23 | 2023-06-13 |
| 1175 | SSD Advisory – VhdmpiValidateVirtualDiskSurface LPE |
Local Privilege Escalation |
Windows |
Sana Oshika (@bigshika) |
Bug Bounty | 2022-08-26 | 2023-06-13 |
| 1127 | CVE-2022-34715: More Microsoft Windows NFS V4 Remote Code Execution |
RCE
Memory corruption |
Microsoft |
Quintin Crist |
Bug Bounty | 2022-09-06 | 2023-06-13 |
| 1064 | Exploiting a Seagate service to create a SYSTEM shell (CVE-2022-40286) |
Local Privilege Escalation
Windows
Driver hacking |
Seagate |
x86matthew (@x86matthew) |
Bug Bounty | 2022-09-20 | 2023-06-13 |
| 1047 | Skype for Business Audit Part 1 - SKYPErsistence |
Local Privilege Escalation
Windows
Security code review |
Microsoft |
Florian Hauser (@frycos) |
Bug Bounty | 2022-09-22 | 2023-06-13 |
| 1038 | Microsoft Windows Shift F10 Bypass and Autopilot privilge escalation |
Local privilege escalation |
Microsoft |
Matek Kamilló (@k4m1ll0) |
Bug Bounty | 2022-09-24 | 2023-06-13 |
| 1031 | New Attack Paths? AS Requested Service Tickets |
Local Privilege Escalation
Windows
Kerberos
Active Directory |
Microsoft |
Charlie Clark (@exploitph) |
Bug Bounty | 2022-09-25 | 2023-06-13 |
| 976 | Cold Hard Cache — Bypassing RPC Interface Security with Cache Abuse |
Privilege escalation
Windows |
Microsoft |
- |
Bug Bounty | 2022-10-11 | 2023-06-13 |
| 911 | The Logging Dead: Two Event Log Vulnerabilities Haunting Windows |
DoS |
Microsoft |
Dolev Taler |
Bug Bounty | 2022-10-25 | 2023-06-13 |
| 898 | RC4 Is Still Considered Harmful |
Kerberos
MiTM
Local Privilege Escalation
Downgrade attack |
Microsoft (Windows) |
James Forshaw (@tiraniddo) |
Bug Bounty | 2022-10-27 | 2023-06-13 |
| 893 | Abusing Windows’ tokens to compromise Active Directory without touching LSASS |
Local Privilege Escalation
Windows
Active Directory Privilege Escalation |
NA |
Aurélien Chalot (@Defte_) |
Bug Bounty | 2022-10-27 | 2023-06-13 |
| 889 | Technical Analysis of Windows CLFS Zero-Day Vulnerability CVE-2022-37969 - Part 1: Root Cause Analysis |
Local Privilege Escalation
Windows |
Microsoft |
Zscaler Threatlabz (@Threatlabz) |
Bug Bounty | 2022-10-28 | 2023-06-13 |
| 856 | Exploring ZIP Mark-of-the-Web Bypass Vulnerability (CVE-2022-41049) |
Local Privilege Escalation
Windows |
Microsoft |
Kuba Gretzky (@mrgretzky) |
Bug Bounty | 2022-11-08 | 2023-06-13 |
| 842 | Windows Kernel: Exploit CVE-2022-35803 in Common Log File System |
Windows
Local Privilege Escalation
Type confusion |
Microsoft |
luckyu (@uuulucky) |
Bug Bounty | 2022-11-11 | 2023-06-13 |
| 839 | Every Signature is Broken: On the Insecurity of Microsoft Office’s OOXML Signatures |
Signature bypass
Signature forgery
Cryptographic issues
Windows |
Microsoft |
Simon Rohlmann |
Bug Bounty | 2022-11-11 | 2023-06-13 |
| 824 | Relaying to AD Certificate Services over RPC |
Active Directory
ADCS
Windows |
NA |
Sylvain Heiniger (@sploutchy) |
Bug Bounty | 2022-11-16 | 2023-06-13 |
| 823 | Control Your Types Or Get Pwned: Remote Code Execution In Exchange Powershell Backend |
RCE
Windows |
Checkmk |
Piotr Bazydło (@chudyPB) |
Bug Bounty | 2022-11-16 | 2023-06-13 |
| 748 | Bypassing The Client Side Encryption To Read Internal Windows Server Files |
Client-side encryption bypass
LFI
Security code review |
NA |
Abhishek Morla (@abhishekmorla) |
Bug Bounty | 2022-12-01 | 2023-06-13 |
| 738 | SysmonEoP |
Local Privilege Escalation
Windows |
Microsoft |
Filip Dragovic (@filip_dragovic) |
Bug Bounty | 2022-12-03 | 2023-06-13 |
| 713 | Public Report – VPN by Google One Security Assessment |
Android
iOS
DoS
Windows
MacoS
Local Privilege Escalation |
Google |
Daniel Romero (@daniel_rome) |
Bug Bounty | 2022-12-09 | 2023-06-13 |
| 694 | You’ve Crossed the Line — Disturbing a Host’s Rest |
Windows
MS-RPC
DoS |
Microsoft |
Ben Barnea (@nachoskrnl) |
Bug Bounty | 2022-12-14 | 2023-06-13 |
| 559 | Dissecting and Exploiting TCP/IP RCE Vulnerability “EvilESP” |
Kernel hacking
Windows
RCE
Memory corruption
Buffer Overflow |
Microsoft (Windows) |
Valentina Palmiotti (@chompie1337) |
Bug Bounty | 2023-01-20 | 2023-06-13 |
| 552 | Activation Context Cache Poisoning: Exploiting CSRSS For Privilege Escalation |
Local Privilege Escalation
Windows |
Microsoft |
Simon Zuckerbraun |
Bug Bounty | 2023-01-23 | 2023-06-13 |
