Live-Hack-CVE/CVE-2023-21577 Photoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must o CVE project by @Sn0wAlice Create: 2023-02-18 07:23:00 +0000 UTC Push: 2023-02-18 07:23:02 +0000 UTC |

Live-Hack-CVE/CVE-2023-22239 After Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:56 +0000 UTC Push: 2023-02-18 07:22:58 +0000 UTC |

Live-Hack-CVE/CVE-2023-21576 Photoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:53 +0000 UTC Push: 2023-02-18 07:22:55 +0000 UTC |

Live-Hack-CVE/CVE-2023-22238 After Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:49 +0000 UTC Push: 2023-02-18 07:22:52 +0000 UTC |

Live-Hack-CVE/CVE-2023-21575 Photoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:46 +0000 UTC Push: 2023-02-18 07:22:48 +0000 UTC |

Live-Hack-CVE/CVE-2023-21574 Photoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:43 +0000 UTC Push: 2023-02-18 07:22:45 +0000 UTC |

Live-Hack-CVE/CVE-2023-22237 After Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:39 +0000 UTC Push: 2023-02-18 07:22:41 +0000 UTC |

Live-Hack-CVE/CVE-2023-0482 In RESTEasy the insecure File.createTempFile() is used in the DataSourceProvider, FileProvider and Mime4JWorkaround classes which creates temp files with insecure permissions that could be read by a local user. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:36 +0000 UTC Push: 2023-02-18 07:22:38 +0000 UTC |

Live-Hack-CVE/CVE-2023-22236 Adobe Animate versions 22.0.8 (and earlier) and 23.0.0 (and earlier) are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:32 +0000 UTC Push: 2023-02-18 07:22:34 +0000 UTC |

Live-Hack-CVE/CVE-2022-48115 The dropdown menu in jspreadsheet before v4.6.0 was discovered to be vulnerable to cross-site scripting (XSS). CVE project by @Sn0wAlice Create: 2023-02-18 07:22:29 +0000 UTC Push: 2023-02-18 07:22:31 +0000 UTC |

Live-Hack-CVE/CVE-2023-22234 Adobe Premiere Rush version 2.6 (and earlier) is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:25 +0000 UTC Push: 2023-02-18 07:22:28 +0000 UTC |

Live-Hack-CVE/CVE-2021-26277 The framework service handles pendingIntent incorrectly, allowing a malicious application with certain privileges to perform privileged actions. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:22 +0000 UTC Push: 2023-02-18 07:22:24 +0000 UTC |

Live-Hack-CVE/CVE-2023-22233 After Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim m CVE project by @Sn0wAlice Create: 2023-02-18 07:22:18 +0000 UTC Push: 2023-02-18 07:22:20 +0000 UTC |

Live-Hack-CVE/CVE-2023-22231 Adobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a vict CVE project by @Sn0wAlice Create: 2023-02-18 07:22:15 +0000 UTC Push: 2023-02-18 07:22:17 +0000 UTC |

Live-Hack-CVE/CVE-2023-22229 Adobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:12 +0000 UTC Push: 2023-02-18 07:22:14 +0000 UTC |

Live-Hack-CVE/CVE-2023-22228 Adobe Bridge versions 12.0.3 (and earlier) and 13.0.1 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:08 +0000 UTC Push: 2023-02-18 07:22:10 +0000 UTC |

Live-Hack-CVE/CVE-2023-21578 Photoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must o CVE project by @Sn0wAlice Create: 2023-02-18 07:22:05 +0000 UTC Push: 2023-02-18 07:22:07 +0000 UTC |

Live-Hack-CVE/CVE-2022-40021 QVidium Technologies Amino A140 (prior to firmware version 1.0.0-283) was discovered to contain a command injection vulnerability. CVE project by @Sn0wAlice Create: 2023-02-18 07:22:01 +0000 UTC Push: 2023-02-18 07:22:04 +0000 UTC |

Live-Hack-CVE/CVE-2022-21939 Sensitive Cookie Without 'HttpOnly' Flag vulnerability in Johnson Controls System Configuration Tool (SCT) version 14 prior to 14.2.3 and version 15 prior to 15.0.3 could allow access to the cookie. CVE project by @Sn0wAlice Create: 2023-02-18 06:13:37 +0000 UTC Push: 2023-02-18 06:13:39 +0000 UTC |

Live-Hack-CVE/CVE-2023-24960 IBM InfoSphere Information Server 11.7 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 246333 CVE project by @Sn0wAlice Create: 2023-02-18 06:13:34 +0000 UTC Push: 2023-02-18 06:13:36 +0000 UTC |