CVE-2022-45422
https://notcve.org/view.php?id=CVE-2022-45422
When LG SmartShare is installed, local privilege escalation is possible through DLL Hijacking attack. • https://lgsecurity.lge.com/bulletins/pc • CWE-427: Uncontrolled Search Path Element •
CVE-2022-44647 – Trend Micro Apex One Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-44647
An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://success.trendmicro.com/solution/000291770 https://www.zerodayinitiative.com/advisories/ZDI-22-1617 • CWE-125: Out-of-bounds Read •
CVE-2022-40772 – ManageEngine ServiceDesk Plus MSP generateSQLReport Improper Input Validation Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2022-40772
This vulnerability allows remote attackers to escalate privileges on affected installations of ManageEngine ServiceDesk Plus MSP. ... An attacker can leverage this vulnerability to escalate privileges to resources normally protected from the user. • https://manageengine.com https://www.manageengine.com/products/service-desk/CVE-2022-40772.html •
CVE-2022-44649 – Trend Micro Apex One Unauthorized Change Prevention Service Out-Of-Bounds Access Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2022-44649
This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://success.trendmicro.com/solution/000291770 https://www.zerodayinitiative.com/advisories/ZDI-22-1619 • CWE-787: Out-of-bounds Write •
CVE-2022-36924 – Local Privilege Escalation in Zoom Rooms Installer for Windows
https://notcve.org/view.php?id=CVE-2022-36924
The Zoom Rooms Installer for Windows prior to 5.12.6 contains a local privilege escalation vulnerability. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-427: Uncontrolled Search Path Element •