CVE-2022-24955 - How Foxit PDF Reader’s DLL Handling Left Systems Exposed
In early 2022, a critical vulnerability (CVE-2022-24955) was discovered in Foxit PDF Reader and Foxit PDF Editor — software used by millions around the world to
CVE-2022-0016 The Connect Before Logon feature has an improper handling of exceptional conditions vulnerability that enables a local attacker to escalate to SYSTEM or root privileges when authenticating with Connect.
CVE-2018-8489 has been assigned to this issue. It is recommended that customers upgrade to version 5.2.9 as soon as possible. Connect Before Logon
CVE-2022-0017 An improper link resolution vulnerability exists in the Palo Alto Networks GlobalProtect app on Windows that enables a local attacker to disrupt system processes and potentially execute arbitrary code with SYSTEM priva
>
On Windows, if the app is configured to access files from a remote network, an attacker on the local network could cause the app to
CVE-2022-0021 An information exposure exists in the Palo Alto Networks GlobalProtect app that logs the connecting user's credentials.
After configuring Connect Before Logon on Windows, the following message is displayed on the log file: (03/03 10:26:11) [VULNERABILITY:Credential Exposure] ---
CVE-2022-22718 Windows Print Spooler Elevation of Privilege Vulnerability
This vulnerability can be exploited by local attackers through the insecure printing of malicious documents on a vulnerable system. By sending malicious print jobs to
Episode
00:00:00
00:00:00