Live-Hack-CVE/CVE-2022-30539 Use after free in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:50 +0000 UTC Push: 2023-02-17 05:43:53 +0000 UTC |

Live-Hack-CVE/CVE-2022-30531 Out-of-bounds read in the Intel(R) Iris(R) Xe MAX drivers for Windows before version 100.0.5.1474 may allow a privileged user to potentially enable information disclosure via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:46 +0000 UTC Push: 2023-02-17 05:43:49 +0000 UTC |

Live-Hack-CVE/CVE-2022-30339 Out-of-bounds read in firmware for the Intel(R) Integrated Sensor Solution before versions 5.4.2.4579v3, 5.4.1.4479 and 5.0.0.4143 may allow a privileged user to potentially enable denial of service via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:43 +0000 UTC Push: 2023-02-17 05:43:45 +0000 UTC |

Live-Hack-CVE/CVE-2022-26837 Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:39 +0000 UTC Push: 2023-02-17 05:43:42 +0000 UTC |

Live-Hack-CVE/CVE-2022-26421 Uncontrolled search path element in the Intel(R) oneAPI DPC++/C++ Compiler Runtime before version 2022.0 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:35 +0000 UTC Push: 2023-02-17 05:43:37 +0000 UTC |

Live-Hack-CVE/CVE-2022-26345 Uncontrolled search path element in the Intel(R) oneAPI Toolkit OpenMP before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:32 +0000 UTC Push: 2023-02-17 05:43:34 +0000 UTC |

Live-Hack-CVE/CVE-2022-26343 Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:28 +0000 UTC Push: 2023-02-17 05:43:30 +0000 UTC |

Live-Hack-CVE/CVE-2022-26032 Uncontrolled search path element in the Intel(R) Distribution for Python programming language before version 2022.1 for Intel(R) oneAPI Toolkits may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:24 +0000 UTC Push: 2023-02-17 05:43:27 +0000 UTC |

Live-Hack-CVE/CVE-2022-26425 Uncontrolled search path element in the Intel(R) oneAPI Collective Communications Library (oneCCL) before version 2021.6 for Intel(R) oneAPI Base Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:21 +0000 UTC Push: 2023-02-17 05:43:23 +0000 UTC |

Live-Hack-CVE/CVE-2022-32570 Improper authentication in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:16 +0000 UTC Push: 2023-02-17 05:43:19 +0000 UTC |

Live-Hack-CVE/CVE-2022-26840 Improper neutralization in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:13 +0000 UTC Push: 2023-02-17 05:43:15 +0000 UTC |

Live-Hack-CVE/CVE-2022-25905 Uncontrolled search path element in the Intel(R) oneAPI Data Analytics Library (oneDAL) before version 2021.5 for Intel(R) oneAPI Base Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:09 +0000 UTC Push: 2023-02-17 05:43:11 +0000 UTC |

Live-Hack-CVE/CVE-2022-30530 Protection mechanism failure in the Intel(R) DSA software before version 22.4.26 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:04 +0000 UTC Push: 2023-02-17 05:43:07 +0000 UTC |

Live-Hack-CVE/CVE-2022-26841 Insufficient control flow management for the Intel(R) SGX SDK software for Linux before version 2.16.100.1 may allow an authenticated user to potentially enable information disclosure via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:43:00 +0000 UTC Push: 2023-02-17 05:43:01 +0000 UTC |

Live-Hack-CVE/CVE-2022-40080 Stack overflow vulnerability in Aspire E5-475G 's BIOS firmware, in the FpGui module, a second call to GetVariable services allows local attackers to execute arbitrary code in the UEFI DXE phase and gain escalated privileges. CVE project by @Sn0wAlice Create: 2023-02-17 05:42:57 +0000 UTC Push: 2023-02-17 05:42:59 +0000 UTC |

Live-Hack-CVE/CVE-2022-26076 Uncontrolled search path element in the Intel(R) oneAPI Deep Neural Network (oneDNN) before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 05:42:53 +0000 UTC Push: 2023-02-17 05:42:55 +0000 UTC |

Live-Hack-CVE/CVE-2023-0745 Relative Path Traversal vulnerability in YugaByte, Inc. Yugabyte Managed (PlatformReplicationManager.Java modules) allows Path Traversal. This vulnerability is associated with program files PlatformReplicationManager.Java. This issue affects Yugabyte Managed: from 2.0 through 2.13. CVE project by @Sn0wAlice Create: 2023-02-17 05:42:46 +0000 UTC Push: 2023-02-17 05:42:48 +0000 UTC |

Live-Hack-CVE/CVE-2023-0771 SQL Injection in GitHub repository ampache/ampache prior to 5.5.7,develop. CVE project by @Sn0wAlice Create: 2023-02-17 03:31:09 +0000 UTC Push: 2023-02-17 03:31:11 +0000 UTC |

Live-Hack-CVE/CVE-2022-3568 The ImageMagick Engine plugin for WordPress is vulnerable to deserialization of untrusted input via the 'cli_path' parameter in versions up to, and including 1.7.5. This makes it possible for unauthenticated users to call files using a PHAR wrapper, granted they can trick a site administrator into performing an action CVE project by @Sn0wAlice Create: 2023-02-17 03:31:05 +0000 UTC Push: 2023-02-17 03:31:08 +0000 UTC |

Live-Hack-CVE/CVE-2022-1722 SSRF in editor's proxy via IPv6 link-local address in GitHub repository jgraph/drawio prior to 18.0.5. SSRF to internal link-local IPv6 addresses CVE project by @Sn0wAlice Create: 2023-02-17 03:31:02 +0000 UTC Push: 2023-02-17 03:31:04 +0000 UTC |