CVE-2022-24934 - How a Registry Change in Kingsoft WPS Office wpsupdater.exe Opens the Door to Remote Code Execution
Kingsoft WPS Office is a popular free office suite, but in early 2022, a big vulnerability was found in one of its components: wpsupdater.exe.
CVE-2022-24292 - Exposing The Risks in Certain HP Printers — A Deep Dive into Info Disclosure, DoS, and RCE
In February 2022, the cybersecurity community sounded the alarm about CVE-2022-24292 — a security flaw impacting a wide range of HP printers. This post breaks down
CVE-2022-27228 - Exploiting Remote Code Execution in Bitrix Vote Module (Polls, Votes) Before 21..100
Bitrix Site Manager is a popular content management system, widely used for websites and business portals. Among its many modules is one called "Vote&
CVE-2022-24125 - Exploiting Dark Souls III Matchmaking Servers – How Attackers Could Push Malicious Requests to Thousands of Players
In early 2022, a serious vulnerability was discovered in the matchmaking servers of Bandai Namco and FromSoftware’s action RPG Dark Souls III. Labeled CVE-2022-24125,
CVE-2022-27226 An issue was found in iRZ Mobile routers' /api/crontab that allows a threat actor to create a crontab entry.
This issue affects all iRZ router models.
iRZ Mobile routers running firmware up to and including 1.1.8 (released on 2019-01-04) are vulnerable. iRZ
Episode
00:00:00
00:00:00