| 1143 | Azure Synapse: Local Privilege Escalation Vulnerability in Spark |
Race condition
Local Privilege Escalation
Cloud |
Microsoft |
Tzah Pahima (@TzahPahima) |
Bug Bounty | 2022-09-01 | 2023-06-13 |
| 1133 | Simple IBM I (AS/400) Hacking |
Local Privilege Escalation
Midrange system
Menu security |
NA |
pz |
Bug Bounty | 2022-09-05 | 2023-06-13 |
| 1132 | SSD Advisory – Linux CONFIG_WATCH_QUEUE LPE |
Memory corruption
Race condition
Local Privilege Escalation |
Ubuntu
Linux Kernel Organization |
- |
Bug Bounty | 2022-09-05 | 2023-06-13 |
| 1131 | Hacking My Helium Crypto Miner |
Hardcoded credentials
Missing authentication
RCE
Local Privilege Escalation |
Pycom |
Md. Asif Hossain (@0x0asif) |
Bug Bounty | 2022-09-05 | 2023-06-13 |
| 1120 | Quasar: Compromising Electron Apps |
Local Privilege Escalation |
Microsoft |
Taggart (@mttaggart) |
Bug Bounty | 2022-09-06 | 2023-06-13 |
| 1106 | Pwn2Own Miami 2022: AVEVA Edge Arbitrary Code Execution |
Arbitrary Code Execution
Local Privilege Escalation |
AVEVA |
Daan Keuper (@daankeuper) |
Bug Bounty | 2022-09-08 | 2023-06-13 |
| 1064 | Exploiting a Seagate service to create a SYSTEM shell (CVE-2022-40286) |
Local Privilege Escalation
Windows
Driver hacking |
Seagate |
x86matthew (@x86matthew) |
Bug Bounty | 2022-09-20 | 2023-06-13 |
| 1047 | Skype for Business Audit Part 1 - SKYPErsistence |
Local Privilege Escalation
Windows
Security code review |
Microsoft |
Florian Hauser (@frycos) |
Bug Bounty | 2022-09-22 | 2023-06-13 |
| 1038 | Microsoft Windows Shift F10 Bypass and Autopilot privilge escalation |
Local privilege escalation |
Microsoft |
Matek Kamilló (@k4m1ll0) |
Bug Bounty | 2022-09-24 | 2023-06-13 |
| 1031 | New Attack Paths? AS Requested Service Tickets |
Local Privilege Escalation
Windows
Kerberos
Active Directory |
Microsoft |
Charlie Clark (@exploitph) |
Bug Bounty | 2022-09-25 | 2023-06-13 |
| 1025 | Another Tale Of IBM I (AS/400) Hacking |
Local Privilege Escalation
Midrange system
Menu security |
NA |
pz |
Bug Bounty | 2022-09-28 | 2023-06-13 |
| 1024 | Two RCEs are better than one: write-up of an interesting lateral movement |
Local Privilege Escalation
RCE |
NA |
Riccardo Malatesta (@seeu_inspace) |
Bug Bounty | 2022-09-28 | 2023-06-13 |
| 953 | [CVE-2022-1786] A Journey To The Dawn |
Use-After-Free
Memory corruption
Local Privilege Escalation |
Google (kCTF)
Linux Kernel Organization |
kylebot (@ky1ebot) |
Bug Bounty | 2022-10-15 | 2023-06-13 |
| 901 | SiriSpy - iOS bug allowed apps to eavesdrop on your conversations with Siri |
iOS
MacOS
Bluetooth
Local Privilege Escalation
TCC bypass |
Apple |
Guilherme Rambo (@_inside) |
Bug Bounty | 2022-10-26 | 2023-06-13 |
| 898 | RC4 Is Still Considered Harmful |
Kerberos
MiTM
Local Privilege Escalation
Downgrade attack |
Microsoft (Windows) |
James Forshaw (@tiraniddo) |
Bug Bounty | 2022-10-27 | 2023-06-13 |
| 893 | Abusing Windows’ tokens to compromise Active Directory without touching LSASS |
Local Privilege Escalation
Windows
Active Directory Privilege Escalation |
NA |
Aurélien Chalot (@Defte_) |
Bug Bounty | 2022-10-27 | 2023-06-13 |
| 889 | Technical Analysis of Windows CLFS Zero-Day Vulnerability CVE-2022-37969 - Part 1: Root Cause Analysis |
Local Privilege Escalation
Windows |
Microsoft |
Zscaler Threatlabz (@Threatlabz) |
Bug Bounty | 2022-10-28 | 2023-06-13 |
| 856 | Exploring ZIP Mark-of-the-Web Bypass Vulnerability (CVE-2022-41049) |
Local Privilege Escalation
Windows |
Microsoft |
Kuba Gretzky (@mrgretzky) |
Bug Bounty | 2022-11-08 | 2023-06-13 |
| 844 | Unit 42 Finds Three Vulnerabilities in OpenLiteSpeed Web Server |
RCE
OS command injection
Path traversal
Local Privilege Escalation |
LiteSpeed |
Artur Avetisyan (@3v1LMonk3y) |
Bug Bounty | 2022-11-10 | 2023-06-13 |
| 842 | Windows Kernel: Exploit CVE-2022-35803 in Common Log File System |
Windows
Local Privilege Escalation
Type confusion |
Microsoft |
luckyu (@uuulucky) |
Bug Bounty | 2022-11-11 | 2023-06-13 |
| 837 | CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS |
MacOS
Local Privilege Escalation
SIP bypass |
Apple |
Mickey Jin (@patch1t) |
Bug Bounty | 2022-11-11 | 2023-06-13 |
| 833 | CVE-2022-32929 - Bypass iOS backup%27s TCC protection |
Local Privilege Escalation
TCC bypass
MacoS
iOS |
Apple |
Csaba Fitzl (@theevilbit) |
Bug Bounty | 2022-11-14 | 2023-06-13 |
| 810 | macOS Sandbox Escape vulnerability via Terminal |
MacOS
Sandbox escape
Local Privilege Escalation |
Apple |
Wojciech Reguła (@_r3ggi) |
Bug Bounty | 2022-11-18 | 2023-06-13 |
| 760 | discord.exe – Improper Input Validation |
Security code review
Local Privilege Escalation
Phishing |
Discord |
RiotSecTeam (@RiotSecTeam) |
Bug Bounty | 2022-11-28 | 2023-06-13 |
| 756 | Brocade Fabric OS ≤ v8.0.2c rbash escape to read system files |
rbash escape
Local Privilege Escalation |
Broadcom |
Bitcrack (@bitcrack_cyber) |
Bug Bounty | 2022-11-29 | 2023-06-13 |
