👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-23277
Github: https://github.com/7BitsTeam/CVE-2022-23277
Describe:
Microsoft Exchange Server Remote Code Execution Vulnerability.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-37298
Github: https://github.com/dbyio/cve-2022-37298-shinken
Describe:
**

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-40648
Github: https://github.com/b3wT/CVE-2022-40648-MASS
Describe:
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim 2022 R1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of X_B files. The issue results from the lack of proper validation of user-supplied data, which can result in a write before the start of an allocated data structure. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-17563.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-41852
Github: https://github.com/Warxim/CVE-2022-41852
Describe:
Those using JXPath to interpret untrusted XPath expressions may be vulnerable to a remote code execution attack. All JXPathContext class functions processing a XPath string are vulnerable except compile() and compilePath() function. The XPath expression can be used by an attacker to load any Java class from the classpath resulting in code execution.

** nps ** 🔧Tool update
Tools name：nps
Tools url：https://github.com/ehang-io/nps/commit/ab648d6f0c618c690a7a79948a7ebd686e1cdafc
commitUpdate log：
Merge pull request #866 from freeoa/master

add build to apple silicon(M1)

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-41358
Github: https://github.com/thecasual/CVE-2022-41358
Describe:
**

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-40664
Github: https://github.com/Jackey0/CVE-2022-40664
Describe:
Apache Shiro before 1.10.0, Authentication Bypass Vulnerability in Shiro when forwarding or including via RequestDispatcher.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-39802
Github: https://github.com/redrays-io/CVE-2022-39802
Describe:
SAP Manufacturing Execution - versions 15.1, 15.2, 15.3, allows an attacker to exploit insufficient validation of a file path request parameter. The intended file path can be manipulated to allow arbitrary traversal of directories on the remote server. The file content within each directory can be read which may lead to information disclosure.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-24990
Github: https://github.com/jsongmax/CVE-2022-24990
Describe:
**

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-36067
Github: https://github.com/backcr4t/CVE-2022-36067-MASS-RCE
Describe:
vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. In versions prior to version 3.9.11, a threat actor can bypass the sandbox protections to gain remote code execution rights on the host running the sandbox. This vulnerability was patched in the release of version 3.9.11 of vm2. There are no known workarounds.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-0824
Github: https://github.com/pizza-power/golang-webmin-CVE-2022-0824-revshell
Describe:
Improper Access Control to Remote Code Execution in GitHub repository webmin/webmin prior to 1.990.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-42889
Github: https://github.com/standb/CVE-2022-42889
Describe:
Apache Commons Text performs variable interpolation, allowing properties to be dynamically evaluated and expanded. The standard format for interpolation is "${prefix:name}", where "prefix" is used to locate an instance of org.apache.commons.text.lookup.StringLookup that performs the interpolation. Starting with version 1.5 and continuing through 1.9, the set of default Lookup instances included interpolators that could result in arbitrary code execution or contact with remote servers. These lookups are: - "script" - execute expressions using the JVM script execution engine (javax.script) - "dns" - resolve dns records - "url" - load values from urls, including from remote servers Applications using the interpolation defaults in the affected versions may be vulnerable to remote code execution or unintentional contact with remote servers if untrusted configuration values are used. Users are recommended to upgrade to Apache Commons Text 1.10.0, which disables the problematic interpolators by default.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-27502
Github: https://github.com/alirezac0/CVE-2022-27502
Describe:
RealVNC VNC Server 6.9.0 through 5.1.0 for Windows allows local privilege escalation because an installer repair operation executes %TEMP% files as SYSTEM.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-3368
Github: https://github.com/Wh04m1001/CVE-2022-3368
Describe:
A vulnerability within the Software Updater functionality of Avira Security for Windows allowed an attacker with write access to the filesystem, to escalate his privileges in certain scenarios. The issue was fixed with Avira Security version 1.1.72.30556.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-42899
Github: https://github.com/iamsanjay/CVE-2022-42899
Describe:
Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds read and stack overflow issues when opening crafted SKP files. Exploiting these issues could lead to information disclosure and code execution. The fixed versions are 10.17.01.58* for MicroStation and 10.17.01.19* for Bentley View.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-40674
Github: https://github.com/nidhi7598/-expat_2.1.0_CVE-2022-40674
Describe:
libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.

👾KEYWORD SERVICE 🏷#cnvd
Name: LJmcCNvdxD
Github: https://github.com/megaclubnew/LJmcCNvdxD

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-27414
Github: https://github.com/lus33rr/CVE-2022-27414
Describe:
**

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-21970
Github: https://github.com/Malwareman007/CVE-2022-21970
Describe:
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21954.

👾CVE SERVICE 🏷#CVE
Mumber: CVE-2022-29303
Github: https://github.com/trhacknon/CVE-2022-29303-Exploit
Describe:
SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via conf_mail.php.