CVE-2022-41587 Uncaptured exceptions in the home screen module
For the attack scenario, we will use the Android application with the version over 10.0. These versions were not officially released, but were obtained
CVE-2022-38982 The fingerprint module has service logic errors, which can be exploited to crack the phone lock.
The attackers need to have physical access to the device. Hackers can exploit this vulnerability by sending a specific command to the phone with the
CVE-2022-28762 The Zoom Client for Meetings for Macs starting with 5.10.6 has a misconfiguration of a debugging port.
This could be used for example to launch other malware or perform other potentially unwanted actions. Zoom for meetings is a collaborative presentation and meeting
CVE-2022-2880 ReverseProxy forwards requests with raw query parameters, including unparseable ones.
This is a critical change as a successful request with an unparseable query parameter could allow a proxy to be exploited to launch an attack
CVE-2022-35052 Heap buffer overflow was discovered in OTFCC commit 617837b.
This issue is addressed by updating the length check in this code. Google Project Zero researchers have also published a detailed guide on how to
Episode
00:00:00
00:00:00