| 742 | Multiple Vulnerabilities in Proxmox VE & Proxmox Mail Gateway |
XSS
CRLF injection
SSRF
LFI
Local Privilege Escalation
Arbitrary file read |
Proxmox |
JianTao Li (@cursered) |
Bug Bounty | 2022-12-02 | 2023-06-13 |
| 741 | CertPotato – Using ADCS to privesc from virtual and network service accounts to local system |
Local Privilege Escalation
ADCS |
Microsoft |
Hocine Mahtout (@Sant0rryu) |
Bug Bounty | 2022-12-02 | 2023-06-13 |
| 738 | SysmonEoP |
Local Privilege Escalation
Windows |
Microsoft |
Filip Dragovic (@filip_dragovic) |
Bug Bounty | 2022-12-03 | 2023-06-13 |
| 713 | Public Report – VPN by Google One Security Assessment |
Android
iOS
DoS
Windows
MacoS
Local Privilege Escalation |
Google |
Daniel Romero (@daniel_rome) |
Bug Bounty | 2022-12-09 | 2023-06-13 |
| 700 | CVE-2019–6238: Apple XAR directory traversal vulnerability |
Local Privilege Escalation |
Apple |
Yiğit Can Yılmaz |
Bug Bounty | 2022-12-13 | 2023-06-13 |
| 681 | Gatekeeper’s Achilles heel: Unearthing a macOS vulnerability |
Local Privilege Escalation
GateKeeper bypass |
Apple (macOS) |
Jonathan Bar Or (@yo_yo_yo_jbo) |
Bug Bounty | 2022-12-17 | 2023-06-13 |
| 672 | Diving into an Old Exploit Chain and Discovering 3 new SIP-Bypass Vulnerabilities |
MacOS
Local Privilege Escalation
SIP bypass |
Apple (macOS) |
Mickey Jin (@patch1t) |
Bug Bounty | 2022-12-20 | 2023-06-13 |
| 670 | A Technical Analysis of CVE-2022-22583 and CVE-2022-32800 |
MacOS
Local Privilege Escalation
SIP bypass |
Apple (macOS) |
Mickey Jin (@patch1t) |
Bug Bounty | 2022-12-21 | 2023-06-13 |
| 607 | Lexmark MC3224adwe RCE exploit |
RCE
SSRF
Printer hacking
Unrestricted file upload
Local Privilege Escalation |
Lexmark |
blasty (@bl4sty) |
Bug Bounty | 2023-01-09 | 2023-06-13 |
| 600 | SSD Advisory – MacOS Mozilla Firefox Download Protections Were Bypassed By .atloc / .ftploc Files |
Local Privilege Escalation |
Mozilla (Firefox) |
Dohyun Lee |
Bug Bounty | 2023-01-11 | 2023-06-13 |
| 599 | Google Chrome “SymStealer” Vulnerability: How to Protect Your Files from Being Stolen |
Local Privilege Escalation
Browser hacking
Symbolic link following |
Google (Chrome & Chromium) |
Ron Masas (@RonMasas) |
Bug Bounty | 2023-01-11 | 2023-06-13 |
| 597 | DER Entitlements: The (Brief) Return of the Psychic Paper |
iOS
MacOS
Local Privilege Escalation |
Apple |
Ivan Fratric (@ifsecure) |
Bug Bounty | 2023-01-12 | 2023-06-13 |
| 595 | Bad things come in large packages: .pkg signature verification bypass on macOS |
Local Privilege Escalation
GateKeeper bypass
SIP bypass
MacOS |
Apple |
Sector 7 (@sector7_nl) |
Bug Bounty | 2023-01-13 | 2023-06-13 |
| 575 | Sudoedit bypass in Sudo <= 1.9.12p1 (CVE-2023-22809) |
Local Privilege Escalation |
Sudo |
Matthieu Barjole (@aevy__) |
Bug Bounty | 2023-01-18 | 2023-06-13 |
| 572 | Nothing new under the Sun – Discovering and exploiting a CDE bug chain |
Printer hacking
Local Privilege Escalation
Memory corruption
Buffer Overflow |
Oracle |
Marco Ivaldi / Raptor (@0xdea) |
Bug Bounty | 2023-01-18 | 2023-06-13 |
| 554 | CVE-2023-24068 && CVE-2023-24069: Abusing Signal Desktop Client for fun and for Espionage |
Thick client
Insecure data storage
Local Privilege Escalation |
Signal |
John Jackson (@johnjhacking) |
Bug Bounty | 2023-01-22 | 2023-06-13 |
| 552 | Activation Context Cache Poisoning: Exploiting CSRSS For Privilege Escalation |
Local Privilege Escalation
Windows |
Microsoft |
Simon Zuckerbraun |
Bug Bounty | 2023-01-23 | 2023-06-13 |
| 506 | Breaking Docker Named Pipes SYSTEMatically: Docker Desktop Privilege Escalation – Part 1 |
Local Privilege Escalation
Windows
Thick client |
Docker |
Eviatar Gerzi |
Bug Bounty | 2023-02-02 | 2023-06-13 |
| 487 | Post-Exploitation: Abusing the KeePass Plugin Cache |
Local Privilege escalation
Windows |
KeePass |
Kevin Minacori |
Bug Bounty | 2023-02-07 | 2023-06-13 |
| 472 | Elevation of privileges from Everyone through Avast Sandbox to System AmPPL (CVE-2021-45335, CVE-2021-45336 and CVE-2021-45337) |
Local Privilege Escalation |
Avast |
Denis Skvortcov (@Denis_Skvortcov) |
Bug Bounty | 2023-02-09 | 2023-06-13 |
| 470 | LocalPotato - When Swapping The Context Leads You To SYSTEM |
Windows
NTLM
Local Privilege Escalation |
Microsoft |
Andrea Pierini (@decoder_it) |
Bug Bounty | 2023-02-10 | 2023-06-13 |
| 453 | LPE via StorSvc |
Local Privilege Escalation
DLL Hijacking |
Microsoft (Windows) |
Antón Ortigueira (@antuache) |
Bug Bounty | 2023-02-13 | 2023-06-13 |
| 440 | EoP via Arbitrary File Write/Overwite in Group Policy Client “gpsvc” – CVE-2022-37955 |
Local Privilege Escalation |
Microsoft (Windows) |
ap (@decoder_it) |
Bug Bounty | 2023-02-16 | 2023-06-13 |
| 436 | Readline crime: exploiting a SUID logic bug |
Local Privilege Escalation |
Arch Linux
util-linux |
roddux |
Bug Bounty | 2023-02-16 | 2023-06-13 |
| 433 | Disabling ClamAV as an Unprivileged User |
Local Privilege Escalation |
ClamAV |
Arch Cloud Labs (@DLL_Cool_J) |
Bug Bounty | 2023-02-19 | 2023-06-13 |
