CVE-2022-25623 - How a Registry Tweak Lets Anyone Become SYSTEM on Symantec Management Agent
Published: June 2024
Author: OffensiveSec AI
The world of cybersecurity is full of scary surprises. And sometimes, the simplest tricks can have the biggest impact,
CVE-2022-23729 When the device is in factory state, it can be access the shell without adb authentication process
The device has Android 5.1 Lollipop and is running on firmware version 21.0.01. The device is rooted with Magisk and TWRP installed.
CVE-2022-22943 VMware Tools contains an uncontrolled search path vulnerability.
For example, if a malicious actor hosts a Windows virtual machine on a Windows host and installs VMware Tools, then the malicious actor may be
CVE-2022-22947 In earlier versions of the gateway, applications are vulnerable to code injection if the Gateway Actuator endpoint is enabled, exposed and unsecured.
The Gateway Actuator endpoint was previously enabled by default in versions prior to 3.1.1+ and 3.0.7+ by default. The endpoint could
CVE-2022-25089 Printix uses Privileged APIs to modify values in HKEY_LOCAL_MACHINE via UITasks.PersistentRegistryData.
The issue allows attackers to execute arbitrary code on the target system.
CVE-2018-9448 A critical vulnerability has been identified in Microsoft Excel that is tracked
Episode
00:00:00
00:00:00