CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-38633
https://notcve.org/view.php?id=CVE-2022-38633
Genymotion Desktop v3.2.1 was discovered to contain a DLL hijacking vulnerability which allows attackers to escalate privileges and execute arbitrary code via a crafted binary. • https://github.com/SaumyajeetDas/Vulnerability/blob/main/Genymotion/GenymotionDesktop.md • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2022-37955 – Windows Group Policy Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-37955
Windows Group Policy Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Windows Group Policy This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37955 •
CVSS: 8.8EPSS: 0%CPEs: 17EXPL: 0CVE-2022-37954 – DirectX Graphics Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-37954
DirectX Graphics Kernel Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en DirectX Graphics Kernel This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37954 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-38466
https://notcve.org/view.php?id=CVE-2022-38466
The default installation sets insecure file permissions that could allow a local attacker to escalate privileges to local administrator. • https://cert-portal.siemens.com/productcert/pdf/ssa-589975.pdf • CWE-276: Incorrect Default Permissions CWE-284: Improper Access Control •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 2CVE-2022-35295 – SAP@ Host Agent Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-35295
In SAP Host Agent (SAPOSCOL) - version 7.22, an attacker may use files created by saposcol to escalate privileges for themselves. • http://packetstormsecurity.com/files/170233/SAP-Host-Agent-Privilege-Escalation.html http://seclists.org/fulldisclosure/2022/Dec/12 https://launchpad.support.sap.com/#/notes/3159736 https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html • CWE-755: Improper Handling of Exceptional Conditions •