CVE-2022-2897 – Measuresoft ScadaPro Server and Client Link Following
https://notcve.org/view.php?id=CVE-2022-2897
This vulnerability allows local attackers to escalate privileges on affected installations of Measuresoft ScadaPro Server. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://www.cisa.gov/uscert/ics/advisories/icsa-22-235-06 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVE-2022-28757 – Local Privilege Escalation in Auto Updater for Zoom Client for Meetings for macOS
https://notcve.org/view.php?id=CVE-2022-28757
The Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with version 5.7.3 and before 5.11.6 contains a vulnerability in the auto update process. A local low-privileged user could exploit this vulnerability to escalate their privileges to root. Zoom Client for Meetings para macOS (estándar y para IT Admin) a partir de la versión 5.7.3 y anteriores a 5.11.6, contiene una vulnerabilidad en el proceso de actualización automática. Un usuario local poco privilegiado podría aprovechar esta vulnerabilidad para escalar sus privilegios a root. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-345: Insufficient Verification of Data Authenticity •
CVE-2022-35750 – Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-35750
Win32k Elevation of Privilege Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35750 •
CVE-2022-35751 – Windows Hyper-V Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-35751
Windows Hyper-V Elevation of Privilege Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35751 •
CVE-2022-28752 – Local Privilege Escalation in the Zoom Rooms for Windows Client
https://notcve.org/view.php?id=CVE-2022-28752
Zoom Rooms for Conference Rooms for Windows versions before 5.11.0 are susceptible to a Local Privilege Escalation vulnerability. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-347: Improper Verification of Cryptographic Signature •