CVE-2022-29107
Microsoft Office Security Feature Bypass Vulnerability. Date published : 2022-05-10 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29107
Monthly Archive: May 2022
CVE-2022-29106
Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability. Date published : 2022-05-10 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29106
CVE-2022-29105
Microsoft Windows Media Foundation Remote Code Execution Vulnerability. Date published : 2022-05-10 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29105
CVE-2022-29104
Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29132. Date published : 2022-05-10 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29104
CVE-2022-29103
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability. Date published : 2022-05-10 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29103
CVE-2022-29102
Windows Failover Cluster Information Disclosure Vulnerability. Date published : 2022-05-10 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29102
CVE-2022-28986
LMS Doctor Simple 2 Factor Authentication Plugin For Moodle Affected: 2021072900 has an Insecure direct object references (IDOR) vulnerability, which allows remote attackers to update sensitive records such as email, password and phone number...
CVE-2022-28601
A Two-Factor Authentication (2FA) bypass vulnerability in "Simple 2FA Plugin for Moodle" by LMS Doctor allows remote attackers to overwrite the phone number used for confirmation via the profile.php file. Therefore, allowing them to...
CVE-2022-27167
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit "Repair" and "Uninstall" features what may lead to arbitrary file deletion. This issue affects: ESET, spol. s r.o. ESET...
CVE-2022-26988
TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte` function. Local users could get remote code execution. Date published : 2022-05-10 http://tp-link.com https://drive.google.com/file/d/1J1KzojrMCq-MrV0HqkWiu17MIXGhRuUH/view?usp=sharing
CVE-2022-26987
TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MmtAtePrase` function. Local users could get remote code execution. Date published : 2022-05-10 http://tp-link.com https://drive.google.com/file/d/1SnNoqRlJiBD673UROLwdgg_roMOneVR9/view?usp=sharing
CVE-2022-26940
Remote Desktop Protocol Client Information Disclosure Vulnerability. Date published : 2022-05-10 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26940
CVE-2022-26939
Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26932, CVE-2022-26938. Date published : 2022-05-10 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26939
CVE-2022-26938
Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26932, CVE-2022-26939. Date published : 2022-05-10 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26938