Live-Hack-CVE/CVE-2022-2196 A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn't need retpolines or IBPB after running L2 due to KVM (L0) advertising eIBRS support to L1. An attacker at L2 with code execution can execute cod CVE project by @Sn0wAlice Create: 2023-01-09 22:03:51 +0000 UTC Push: 2023-01-09 22:03:54 +0000 UTC |

th3-5had0w/CVE-2022-2602-Study Create: 2023-01-09 21:21:02 +0000 UTC Push: 2023-01-09 21:21:03 +0000 UTC |

Live-Hack-CVE/CVE-2022-33276 Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command. CVE project by @Sn0wAlice Create: 2023-01-09 19:54:10 +0000 UTC Push: 2023-01-09 19:54:12 +0000 UTC |

Live-Hack-CVE/CVE-2022-33274 Memory corruption in android core due to improper validation of array index while returning feature ids after license authentication. CVE project by @Sn0wAlice Create: 2023-01-09 19:54:05 +0000 UTC Push: 2023-01-09 19:54:08 +0000 UTC |

Live-Hack-CVE/CVE-2022-33255 Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device. CVE project by @Sn0wAlice Create: 2023-01-09 19:54:00 +0000 UTC Push: 2023-01-09 19:54:04 +0000 UTC |

Live-Hack-CVE/CVE-2022-33266 Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content. CVE project by @Sn0wAlice Create: 2023-01-09 19:53:56 +0000 UTC Push: 2023-01-09 19:53:59 +0000 UTC |

Live-Hack-CVE/CVE-2022-33252 Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame. CVE project by @Sn0wAlice Create: 2023-01-09 19:53:52 +0000 UTC Push: 2023-01-09 19:53:55 +0000 UTC |

Live-Hack-CVE/CVE-2022-33218 Memory corruption in Automotive due to improper input validation. CVE project by @Sn0wAlice Create: 2023-01-09 19:53:47 +0000 UTC Push: 2023-01-09 19:53:50 +0000 UTC |

Live-Hack-CVE/CVE-2022-33265 Memory corruption due to information exposure in Powerline Communication Firmware while sending different MMEs from a single, unassociated device. CVE project by @Sn0wAlice Create: 2023-01-09 19:53:44 +0000 UTC Push: 2023-01-09 19:53:46 +0000 UTC |

Live-Hack-CVE/CVE-2022-25725 Denial of service in MODEM due to improper pointer handling CVE project by @Sn0wAlice Create: 2023-01-09 19:53:39 +0000 UTC Push: 2023-01-09 19:53:41 +0000 UTC |

Live-Hack-CVE/CVE-2022-25721 Memory corruption in video driver due to type confusion error during video playback CVE project by @Sn0wAlice Create: 2023-01-09 19:53:36 +0000 UTC Push: 2023-01-09 19:53:38 +0000 UTC |

Live-Hack-CVE/CVE-2022-33253 Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames. CVE project by @Sn0wAlice Create: 2023-01-09 19:53:31 +0000 UTC Push: 2023-01-09 19:53:34 +0000 UTC |

Live-Hack-CVE/CVE-2022-25717 Memory corruption in display due to double free while allocating frame buffer memory CVE project by @Sn0wAlice Create: 2023-01-09 19:53:28 +0000 UTC Push: 2023-01-09 19:53:30 +0000 UTC |

Live-Hack-CVE/CVE-2022-22079 Denial of service while processing fastboot flash command on mmc due to buffer over read CVE project by @Sn0wAlice Create: 2023-01-09 19:53:23 +0000 UTC Push: 2023-01-09 19:53:26 +0000 UTC |

Live-Hack-CVE/CVE-2022-33219 Memory corruption in Automotive due to integer overflow to buffer overflow while registering a new listener with shared buffer. CVE project by @Sn0wAlice Create: 2023-01-09 19:53:19 +0000 UTC Push: 2023-01-09 19:53:22 +0000 UTC |

Live-Hack-CVE/CVE-2022-22088 Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote CVE project by @Sn0wAlice Create: 2023-01-09 19:53:14 +0000 UTC Push: 2023-01-09 19:53:18 +0000 UTC |

Live-Hack-CVE/CVE-2022-22470 IBM Security Verify Governance 10.0 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 225232. CVE project by @Sn0wAlice Create: 2023-01-09 19:53:10 +0000 UTC Push: 2023-01-09 19:53:13 +0000 UTC |

Live-Hack-CVE/CVE-2022-45883 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. CVE project by @Sn0wAlice Create: 2023-01-09 19:53:06 +0000 UTC Push: 2023-01-09 19:53:09 +0000 UTC |

Live-Hack-CVE/CVE-2022-40520 Memory corruption due to stack-based buffer overflow in Core CVE project by @Sn0wAlice Create: 2023-01-09 19:53:02 +0000 UTC Push: 2023-01-09 19:53:05 +0000 UTC |

Live-Hack-CVE/CVE-2022-33285 Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames. CVE project by @Sn0wAlice Create: 2023-01-09 19:52:57 +0000 UTC Push: 2023-01-09 19:53:00 +0000 UTC |