| 1371 | Uncovering a macOS App Sandbox escape vulnerability: A deep dive into CVE-2022-26706 |
Local Privilege Escalation |
Apple |
Microsoft 365 Defender Research Team |
Bug Bounty | 2022-07-13 | 2023-06-13 |
| 1345 | Pwn2Own Miami 2022: OPC UA .NET Standard Trusted Application Check Bypass |
Local Privilege Escalation |
OPC Foundation |
Sector 7 (@sector7_nl) |
Bug Bounty | 2022-07-19 | 2023-06-13 |
| 1343 | Logging Passwords in Plaintext in Azure Arc |
Information disclosure
Local Privilege Escalation
Cloud |
Microsoft |
Jimi Sebree (@DinoBytes) |
Bug Bounty | 2022-07-19 | 2023-06-13 |
| 1341 | CVE-2022-30526 (Fixed): Zyxel Firewall Local Privilege Escalation |
Local Privilege Escalation |
Zyxel |
Jake Baines (@Junior_Baines) |
Bug Bounty | 2022-07-19 | 2023-06-13 |
| 1336 | [CVE-2022-34918] A crack in the Linux firewall |
Memory corruption
Local Privilege Escalation |
Linux Kernel Organization |
Arthur Mongodin |
Bug Bounty | 2022-07-20 | 2023-06-13 |
| 1320 | Deep understand ASPX file handling and some related attack vectors |
Local Privilege Escalation
WAF bypass |
Microsoft |
Rskvp93 (@rskvp93) |
Bug Bounty | 2022-07-25 | 2023-06-13 |
| 1293 | My Second CVE (CVE-2022-31855) |
OS command injection
Local Privilege Escalation |
RStudio |
y0ung_dst (@Y0ung_MA) |
Bug Bounty | 2022-07-30 | 2023-06-13 |
| 1278 | Symlinks as mount portals: Abusing container mount points on MikroTik%27s RouterOS to gain code execution |
Container escape
Local Privilege Escalation |
MikroTik |
nns |
Bug Bounty | 2022-08-05 | 2023-06-13 |
| 1277 | CVE-2022-31660 and CVE-2022-31661 (FIXED): VMware Workspace ONE Access, Identity Manager, and vRealize Automation LPE |
Local Privilege Escalation |
VMware |
Spencer McIntyre (@zeroSteiner) |
Bug Bounty | 2022-08-05 | 2023-06-13 |
| 1276 | Revisiting OMI: Analysis of CVE-2022-29149, a privilege escalation vulnerability in Azure OMI |
Local Privilege Escalation
Cloud |
Microsoft |
Nir Ohfeld (@nirohfeld) |
Bug Bounty | 2022-08-05 | 2023-06-13 |
| 1264 | From Shared Dash to Root Bash :: Pre-Authenticated RCE in VMWare vRealize Operations Manager |
Authentication bypass
Information disclosure
Local Privilege Escalation |
VMware |
Steven Seeley (@steventseeley) |
Bug Bounty | 2022-08-09 | 2023-06-13 |
| 1261 | The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I) |
Memory corruption
Race condition
Local Privilege Escalation
Android |
Linux Kernel Organization
Google
Samsung |
Xingyu Jin |
Bug Bounty | 2022-08-10 | 2023-06-13 |
| 1249 | Rapid7 Discovered Vulnerabilities in Cisco ASA, ASDM, and FirePOWER Services Software |
RCE
OS command injection
Local Privilege Escalation
MiTM |
Cisco |
Jake Baines (@Junior_Baines) |
Bug Bounty | 2022-08-11 | 2023-06-13 |
| 1247 | Attacking Titan M with Only One Byte |
Memory corruption
Local Privilege Escalation |
Google |
Damiano Melotti (@DamianoMelotti) |
Bug Bounty | 2022-08-11 | 2023-06-13 |
| 1246 | The cloud has an isolation problem: PostgreSQL vulnerabilities affect multiple cloud vendors |
Privilege escalation
Cross-tenant vulnerability
OS command injection
Local Privilege Escalation
Cloud |
Google
Microsoft
Aiven |
Shir Tamari (@shirtamari) |
Bug Bounty | 2022-08-11 | 2023-06-13 |
| 1245 | IAM Whoever I Say IAM :: Infiltrating VMWare Workspace ONE Access Using a 0-Click Exploit |
Authentication bypass
Information disclosure
CSRF
RCE
Local Privilege Escalation |
VMware |
Steven Seeley (@steventseeley) |
Bug Bounty | 2022-08-11 | 2023-06-13 |
| 1241 | Process injection: breaking all macOS security layers with a single vulnerability |
Local Privilege Escalation
Process injection vulnerability |
Apple |
Thijs Alkemade (@xnyhps) |
Bug Bounty | 2022-08-12 | 2023-06-13 |
| 1226 | Hacking Zyxel IP cameras to gain a root shell |
Missing authentication
DoS
Information disclosure
Local Privilege Escalation |
Zyxel |
Eric Urban |
Bug Bounty | 2022-08-14 | 2023-06-13 |
| 1216 | FreeBSD 11.0-13.0 LPE via aio_aqueue Kernel Refcount Bug |
Memory corruption
Local Privilege Escalation |
FreeBSD Security Team |
Chris (@accessvector) |
Bug Bounty | 2022-08-16 | 2023-06-13 |
| 1190 | Vulnerability in Linux containers – investigation and mitigation |
Local Privilege Escalation |
Moby Project |
Steven Murdoch (@sjmurdoch) |
Bug Bounty | 2022-08-22 | 2023-06-13 |
| 1187 | Break Me Out Of Sandbox In Old Pipe - CVE-2022-22715 Windows Dirty Pipe |
Local Privilege Escalation |
Microsoft |
k0shl (@KeyZ3r0) |
Bug Bounty | 2022-08-23 | 2023-06-13 |
| 1175 | SSD Advisory – VhdmpiValidateVirtualDiskSurface LPE |
Local Privilege Escalation |
Windows |
Sana Oshika (@bigshika) |
Bug Bounty | 2022-08-26 | 2023-06-13 |
| 1160 | Blind Exploits To Rule Watchguard Firewalls |
XPath injection
Memory corruption
Local Privilege Escalation
RCE |
WatchGuard |
Charles Fol (@cfreal_) |
Bug Bounty | 2022-08-29 | 2023-06-13 |
| 1152 | CVE-2022-26113: FortiClient Arbitrary File Write As SYSTEM |
Arbitrary file write
Local Privilege Escalation |
Fortinet |
David Yesland (@daveysec) |
Bug Bounty | 2022-08-30 | 2023-06-13 |
| 1146 | SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) |
Memory corruption
Local Privilege Escalation |
Ubuntu
Linux Kernel Organization |
Cedric Halbronn (@saidelike) |
Bug Bounty | 2022-09-01 | 2023-06-13 |
