Live-Hack-CVE/CVE-2022-42380 This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data CVE project by @Sn0wAlice Create: 2023-02-01 23:51:25 +0000 UTC Push: 2023-02-01 23:51:27 +0000 UTC |

Live-Hack-CVE/CVE-2022-42382 This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data CVE project by @Sn0wAlice Create: 2023-02-01 23:51:22 +0000 UTC Push: 2023-02-01 23:51:24 +0000 UTC |

Live-Hack-CVE/CVE-2022-42381 This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data CVE project by @Sn0wAlice Create: 2023-02-01 23:51:18 +0000 UTC Push: 2023-02-01 23:51:20 +0000 UTC |

Live-Hack-CVE/CVE-2022-42384 This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Craf CVE project by @Sn0wAlice Create: 2023-02-01 23:51:13 +0000 UTC Push: 2023-02-01 23:51:15 +0000 UTC |

Live-Hack-CVE/CVE-2022-42383 This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Craf CVE project by @Sn0wAlice Create: 2023-02-01 23:51:09 +0000 UTC Push: 2023-02-01 23:51:11 +0000 UTC |

Live-Hack-CVE/CVE-2023-0610 Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.3. CVE project by @Sn0wAlice Create: 2023-02-01 21:37:35 +0000 UTC Push: 2023-02-01 21:37:38 +0000 UTC |

Live-Hack-CVE/CVE-2023-0609 Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.3. CVE project by @Sn0wAlice Create: 2023-02-01 21:37:30 +0000 UTC Push: 2023-02-01 21:37:34 +0000 UTC |

g1vi/CVE-2010-0426 sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit Create: 2023-02-01 19:39:17 +0000 UTC Push: 2023-02-01 19:39:18 +0000 UTC |

Live-Hack-CVE/CVE-2023-0608 Cross-site Scripting (XSS) - DOM in GitHub repository microweber/microweber prior to 1.3.2. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:24 +0000 UTC Push: 2023-02-01 19:24:26 +0000 UTC |

Live-Hack-CVE/CVE-2022-46679 Dell PowerScale OneFS 8.2.x, 9.0.0.x - 9.4.0.x, contain an insufficient resource pool vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to denial of service. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:20 +0000 UTC Push: 2023-02-01 19:24:23 +0000 UTC |

Live-Hack-CVE/CVE-2022-45099 Dell PowerScale OneFS, versions 8.2.x-9.4.x, contain a weak encoding for a NDMP password. A malicious and privileged local attacker could potentially exploit this vulnerability, leading to a full system compromise CVE project by @Sn0wAlice Create: 2023-02-01 19:24:16 +0000 UTC Push: 2023-02-01 19:24:19 +0000 UTC |

Live-Hack-CVE/CVE-2022-46756 Dell VxRail, versions prior to 7.0.410, contain a Container Escape Vulnerability. A local high-privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the container's underlying OS. Exploitation may lead to a system take over by an attacker. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:12 +0000 UTC Push: 2023-02-01 19:24:15 +0000 UTC |

Live-Hack-CVE/CVE-2022-34403 Dell BIOS contains a Stack based buffer overflow vulnerability. A local authenticated attacker could potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter to gain arbitrary code execution in SMRAM. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:08 +0000 UTC Push: 2023-02-01 19:24:11 +0000 UTC |

Live-Hack-CVE/CVE-2022-34398 Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious user could\u00a0potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI to gain arbitrary code execution on the system. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:05 +0000 UTC Push: 2023-02-01 19:24:07 +0000 UTC |

Live-Hack-CVE/CVE-2022-45100 Dell PowerScale OneFS, versions 8.2.x-9.3.x, contains an Improper Certificate Validation vulnerability. An remote unauthenticated attacker could potentially exploit this vulnerability, leading to a full compromise of the system. CVE project by @Sn0wAlice Create: 2023-02-01 19:24:01 +0000 UTC Push: 2023-02-01 19:24:03 +0000 UTC |

Live-Hack-CVE/CVE-2022-32482 Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable. CVE project by @Sn0wAlice Create: 2023-02-01 19:23:57 +0000 UTC Push: 2023-02-01 19:23:59 +0000 UTC |

Live-Hack-CVE/CVE-2022-45098 Dell PowerScale OneFS, 9.0.0.x-9.4.0.x, contain a cleartext storage of sensitive information vulnerability in S3 component. An authenticated local attacker could potentially exploit this vulnerability, leading to information disclosure. CVE project by @Sn0wAlice Create: 2023-02-01 19:23:54 +0000 UTC Push: 2023-02-01 19:23:56 +0000 UTC |

Live-Hack-CVE/CVE-2022-34396 Dell OpenManage Server Administrator (OMSA) version 10.3.0.0 and earlier contains a DLL Injection Vulnerability. A local low privileged authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary executable on the operating system with elevated privileges. Exploitation may CVE project by @Sn0wAlice Create: 2023-02-01 19:23:50 +0000 UTC Push: 2023-02-01 19:23:52 +0000 UTC |

Live-Hack-CVE/CVE-2022-45102 Dell EMC Data Protection Central, versions 19.1 through 19.7, contains a Host Header Injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by injecting arbitrary \u2018Host\u2019 header values to poison a web cache or trigger redirections. CVE project by @Sn0wAlice Create: 2023-02-01 19:23:47 +0000 UTC Push: 2023-02-01 19:23:49 +0000 UTC |

Live-Hack-CVE/CVE-2023-0115 This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. CVE project by @Sn0wAlice Create: 2023-02-01 19:23:42 +0000 UTC Push: 2023-02-01 19:23:45 +0000 UTC |