Live-Hack-CVE/CVE-2022-42382 This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data CVE project by @Sn0wAlice Create: 2023-02-01 23:51:22 +0000 UTC Push: 2023-02-01 23:51:24 +0000 UTC |

Live-Hack-CVE/CVE-2022-42381 This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data CVE project by @Sn0wAlice Create: 2023-02-01 23:51:18 +0000 UTC Push: 2023-02-01 23:51:20 +0000 UTC |

Live-Hack-CVE/CVE-2022-42384 This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Craf CVE project by @Sn0wAlice Create: 2023-02-01 23:51:13 +0000 UTC Push: 2023-02-01 23:51:15 +0000 UTC |

Live-Hack-CVE/CVE-2022-42383 This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Craf CVE project by @Sn0wAlice Create: 2023-02-01 23:51:09 +0000 UTC Push: 2023-02-01 23:51:11 +0000 UTC |

Live-Hack-CVE/CVE-2023-0610 Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.3. CVE project by @Sn0wAlice Create: 2023-02-01 21:37:35 +0000 UTC Push: 2023-02-01 21:37:38 +0000 UTC |

Live-Hack-CVE/CVE-2023-0609 Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.3. CVE project by @Sn0wAlice Create: 2023-02-01 21:37:30 +0000 UTC Push: 2023-02-01 21:37:34 +0000 UTC |

g1vi/CVE-2010-0426 sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit Create: 2023-02-01 19:39:17 +0000 UTC Push: 2023-02-01 19:39:18 +0000 UTC |

Live-Hack-CVE/CVE-2023-0608 Cross-site Scripting (XSS) - DOM in GitHub repository microweber/microweber prior to 1.3.2. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:24 +0000 UTC Push: 2023-02-01 19:24:26 +0000 UTC |

Live-Hack-CVE/CVE-2022-46679 Dell PowerScale OneFS 8.2.x, 9.0.0.x - 9.4.0.x, contain an insufficient resource pool vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to denial of service. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:20 +0000 UTC Push: 2023-02-01 19:24:23 +0000 UTC |

Live-Hack-CVE/CVE-2022-45099 Dell PowerScale OneFS, versions 8.2.x-9.4.x, contain a weak encoding for a NDMP password. A malicious and privileged local attacker could potentially exploit this vulnerability, leading to a full system compromise CVE project by @Sn0wAlice Create: 2023-02-01 19:24:16 +0000 UTC Push: 2023-02-01 19:24:19 +0000 UTC |

Live-Hack-CVE/CVE-2022-46756 Dell VxRail, versions prior to 7.0.410, contain a Container Escape Vulnerability. A local high-privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the container's underlying OS. Exploitation may lead to a system take over by an attacker. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:12 +0000 UTC Push: 2023-02-01 19:24:15 +0000 UTC |

Live-Hack-CVE/CVE-2022-34403 Dell BIOS contains a Stack based buffer overflow vulnerability. A local authenticated attacker could potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter to gain arbitrary code execution in SMRAM. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:08 +0000 UTC Push: 2023-02-01 19:24:11 +0000 UTC |

Live-Hack-CVE/CVE-2022-34398 Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious user could\u00a0potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI to gain arbitrary code execution on the system. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:05 +0000 UTC Push: 2023-02-01 19:24:07 +0000 UTC |

Live-Hack-CVE/CVE-2022-45100 Dell PowerScale OneFS, versions 8.2.x-9.3.x, contains an Improper Certificate Validation vulnerability. An remote unauthenticated attacker could potentially exploit this vulnerability, leading to a full compromise of the system. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:01 +0000 UTC Push: 2023-02-01 19:24:03 +0000 UTC |

Live-Hack-CVE/CVE-2022-32482 Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable. CVE project by @Sn0wAlice Create: 2023-02-01 19:23:57 +0000 UTC Push: 2023-02-01 19:23:59 +0000 UTC |

Live-Hack-CVE/CVE-2022-45098 Dell PowerScale OneFS, 9.0.0.x-9.4.0.x, contain a cleartext storage of sensitive information vulnerability in S3 component. An authenticated local attacker could potentially exploit this vulnerability, leading to information disclosure. CVE project by @Sn0wAlice Create: 2023-02-01 19:23:54 +0000 UTC Push: 2023-02-01 19:23:56 +0000 UTC |

Live-Hack-CVE/CVE-2022-34396 Dell OpenManage Server Administrator (OMSA) version 10.3.0.0 and earlier contains a DLL Injection Vulnerability. A local low privileged authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary executable on the operating system with elevated privileges. Exploitation may CVE project by @Sn0wAlice Create: 2023-02-01 19:23:50 +0000 UTC Push: 2023-02-01 19:23:52 +0000 UTC |

Live-Hack-CVE/CVE-2022-45102 Dell EMC Data Protection Central, versions 19.1 through 19.7, contains a Host Header Injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by injecting arbitrary \u2018Host\u2019 header values to poison a web cache or trigger redirections. CVE project by @Sn0wAlice Create: 2023-02-01 19:23:47 +0000 UTC Push: 2023-02-01 19:23:49 +0000 UTC |

Live-Hack-CVE/CVE-2023-0115 This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. CVE project by @Sn0wAlice Create: 2023-02-01 19:23:42 +0000 UTC Push: 2023-02-01 19:23:45 +0000 UTC |

Live-Hack-CVE/CVE-2022-3990 HPSFViewer might allow Escalation of Privilege. This potential vulnerability was remediated on July 29th, 2022. Customers who opted for automatic updates should have already received the remediation. CVE project by @Sn0wAlice Create: 2023-02-01 19:23:38 +0000 UTC Push: 2023-02-01 19:23:41 +0000 UTC |