CVE-2022-43673 Wire through 3.22.3993 deletes sent messages but can retrieve them from the AppData\Roaming\Wire\IndexedDB\https_app.wire.com_0.indexeddb.leveldb database.
If you’re running version 3.22.3993 of Windows or earlier, consider blocking access to the Wire app from the AppLocker; this will prevent
CVE-2022-44725 The LDS through 1.04.403.478 uses a hard-coded file path for a configuration file.
This file could then be leveraged to elevate privileges or take additional actions on the device. We advise users to update to version 1.04.
CVE-2022-43264 - Exploiting Directory Traversal in Guitar Pro for iOS (Pre-1.10.2)
If you play music and use tablature, you probably know Guitar Pro—a popular app for editing, playing, and sharing tabs. But did you know
CVE-2022-40309 Users with write permissions to a repository can delete arbitrary directories.
This can cause chaos if you don’t control where your code is stored. To prevent accidental deletions, you can grant only a subset of
CVE-2022-40846 Tenda AC1200 Router has a stored XSS vulnerability that allows an attacker to execute JavaScript code via the applications stored hostname.
An attacker can exploit this vulnerability to perform remote code execution in the context of the affected application or the user of the affected application.
Episode
00:00:00
00:00:00