CVE-2022-41203 - How a Low-Privilege SAP BI User Could Take Over the Server with a Simple Exploit
CVE-2022-41203 is a serious deserialization vulnerability uncovered in SAP BusinessObjects Business Intelligence (BI) Platform. With a CVSS v3 base score of 9.9 (Critical), it
CVE-2022-20441 - Exploiting a Logic Flaw in Task.java’s `navigateUpTo()` Allowing Local Privilege Escalation via Unexported Intent Handler
In late 2022, a security flaw was discovered in Android’s Task.java, specifically within the navigateUpTo() method. Tracked as CVE-2022-20441, this vulnerability lets a
CVE-2022-41212 SAP NetWeaver Application Server allows an attacker with high privileges to read files which are otherwise restricted.
Due to insufficient input validation, SAP NetWeaver Application Server allows an attacker with high level privileges to use a remote enabled function to read an
CVE-2022-41208 An attacker with user privileges can alter a user's session.
To exploit the vulnerability, an attacker must be able to log in to the targeted application with user privileges. The update causes certain parameters of
CVE-2022-27858 CSV Injection vulnerability in Activity Log Team Activity Log <= 2.8.3 on WordPress.
Activity logs are a great way to track activity on your website and help assess performance. Activity logs are also a great way to collect
Episode
00:00:00
00:00:00