Daily Vulnerability Trends: Fri Nov 11 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-41049Windows Mark of the Web Security Feature Bypass Vulnerability. This CVE ID...
Vulnerabilities
Intel AMT privilege escalation | CVE-2022-26845
NAME Intel AMT privilege escalation Platforms Affected:Intel AMT 11.0 Intel AMT 12.0 Intel AMT 14.0.0 Intel AMT 15.0.34Risk Level:8.7Exploitability:UnprovenConsequences:Gain Privilege...
Intel Server Board S2600WF, Intel(R) Server System R1000WF and Intel(R) Server System R2000WF families privilege escalation | CVE-2022-30542
NAME Intel Server Board S2600WF, Intel(R) Server System R1000WF and Intel(R) Server System R2000WF families privilege escalation Platforms Affected:Intel Server...
Intel AMT denial of service | CVE-2022-27497
NAME Intel AMT denial of service Platforms Affected:Intel AMT 11.0 Intel AMT 12.0 Intel AMT 14.0.0 Intel AMT 15.0.34Risk Level:8.6Exploitability:UnprovenConsequences:Denial...
Google Chrome V8 code execution | CVE-2022-3889
NAME Google Chrome V8 code execution Platforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker to execute...
Google Chrome Web Workers code execution | CVE-2022-3887
NAME Google Chrome Web Workers code execution Platforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker to...
Google Chrome WebCodecs code execution | CVE-2022-3888
NAME Google Chrome WebCodecs code execution Platforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker to execute...
Intel Xeon processors privilege escalation | CVE-2022-26006
NAME Intel Xeon processors privilege escalation Platforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION Intel Xeon processors could allow a local authenticated attacker...
Intel AMT privilege escalation | CVE-2022-29893
NAME Intel AMT privilege escalation Platforms Affected:Intel AMT 11.0 Intel AMT 12.0 Intel AMT 14.0.0 Intel AMT 15.0.34Risk Level:8.1Exploitability:UnprovenConsequences:Gain Privilege...
Intel XMM 7560 Modem software privilege escalation | CVE-2022-26513
NAME Intel XMM 7560 Modem software privilege escalation Platforms Affected:Intel XMM 7560 Modem softwareRisk Level:8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION Intel XMM 7560...
Google Chrome Crashpad code execution | CVE-2022-3890
NAME Google Chrome Crashpad code execution Platforms Affected:Risk Level:9.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome is vulnerable to a heap-based buffer overflow,...
Intel NUC BIOS firmware privilege escalation | CVE-2022-33176
NAME Intel NUC BIOS firmware privilege escalation Platforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION Intel NUC BIOS firmware could allow a local...
Intel privilege escalation | CVE-2022-26006
NAME Intel privilege escalation Platforms Affected:Intel Xeon E ProcessorRisk Level:8.2Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION Intel could allow a local authenticated attacker to...
Intel NUC BIOS firmware privilege escalation | CVE-2021-33164
NAME Intel NUC BIOS firmware privilege escalation Platforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION Intel NUC BIOS firmware could allow a local...
Intel Active Management Technology (AMT) SDK, Endpoint Management Assistant (EMA), and Manageability Commander privilege escalation | CVE-2022-26341
NAME Intel Active Management Technology (AMT) SDK, Endpoint Management Assistant (EMA), and Manageability Commander privilege escalation Platforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Gain Privilege...
Google Chrome Speech Recognition code execution | CVE-2022-3886
NAME Google Chrome Speech Recognition code execution Platforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker to...
Google Chrome V8 code execution | CVE-2022-3885
NAME Google Chrome V8 code execution Platforms Affected:Google Chrome 107.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Intel Data Center Manager (DCM) software privilege escalation | CVE-2022-33942
NAME Intel Data Center Manager (DCM) software privilege escalation Platforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION Intel Data Center Manager (DCM) software...
Daily Vulnerability Trends: Thu Nov 10 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-31686VMware Workspace ONE Assist prior to 22.10 contains a Broken Authentication Method...
Microsoft Windows Kerberos RC4-HMAC privilege escalation | CVE-2022-37966
NAME Microsoft Windows Kerberos RC4-HMAC privilege escalation Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows...
SICK SIM1004 privilege escalation | CVE-2022-27586
NAME SICK SIM1004 privilege escalation Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION SICK SIM1004 could allow a remote authenticated attacker to gain...
Microsoft Windows ODBC Driver code execution | CVE-2022-41048
NAME Microsoft Windows ODBC Driver code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows...
Microsoft Windows Netlogon RPC privilege escalation | CVE-2022-38023
NAME Microsoft Windows Netlogon RPC privilege escalation Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows...
Apache Commons BCEL security bypass | CVE-2022-42920
NAME Apache Commons BCEL security bypass Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Apache Commons BCEL could allow a remote attacker to...
