Microsoft | writeups.xyz

Title	Vulnerabilities	Programs	Authors
CVE-2022-30136: Microsoft Windows Network File System V4 Remote Code Execution Vulnerability	RCE DoS Memory Corruption	Microsoft	Yuki Chen (@Guhe120) Guy Lederfein (@Glederfein) Quintin Crist
Microsoft Teams — Cross Site Scripting (XSS) Bypass CSP	XSS CSP Bypass HTML Injection	Microsoft	Numan Turle (@Numanturle)
Microsoft Azure Site Recovery DLL Hijacking	DLL Hijacking Privilege Escalation	Microsoft	Jimi Sebree (@DinoBytes)
Visual Studio Code - Remote Code Execution in Restricted Mode (CVE-2021-43908)	RCE XSS	Microsoft	S1r1us (@S1r1u5_) Maxwell Garrett (@TheGrandPew)
Bypassing .NET Serialization Binders	Insecure Deserialization RCE	Microsoft	Markus Wulftange (@Mwulftange)
FabricScape: Escaping Service Fabric and Taking Over the Cluster	Container Escape Local Privilege Escalation Cross-Tenant Vulnerability	Microsoft	Unit 42 (@Unit42_Intel)
HTML and Hyperlink Injection via Share Option In Microsoft Onenote Application	HTML Injection Phishing	Microsoft	Divyanshu Shukla (@Justm0rph3u5)
Pwn2Own 2021 Microsoft Exchange Exploit Chain	SSRF RCE	Microsoft	Rskvp93 (@Rskvp93)
Proofpoint Discovers Potentially Dangerous Microsoft Office 365 Functionality that can Ransom Files Stored on SharePoint and OneDrive	Logic Flaw	Microsoft	Proofpoint (@Proofpoint)
That Pipe is Still Leaking: Revisiting the RDP Named Pipe Vulnerability	RCE	Microsoft	Gabriel Sztejnworcel (@Sztejnworcel)
Privilege Escalation in AKS Clusters	Privilege Escalation	Microsoft	Anneke Breust Aymen Segni (@Aops_solutions) Philipp Belitz
Hertzbleed Attack	Side-Channel Attack Hardware Hacking Cryptographic Issues	Intel Cloudflare Microsoft	Yingchen Wang (@YingchenWang96) Riccardo Paccagnella (@Ricpacca) Elizabeth Tang He Hovav Shacham (@Hovav) Christopher Fletcher David Kohlbrenner (@Dkohlbre)
SynLapse – Technical Details for Critical Azure Synapse Vulnerability	Cross-Tenant Vulnerability RCE Cloud	Microsoft	Tzah Pahima (@TzahPahima)
Microsoft Azure Synapse Pwnalytics	Privilege Escalation Cloud	Microsoft	Jimi Sebree (@DinoBytes)
A Story of a Bug Found Fuzzing	Browser Hacking Memory Corruption	Google Microsoft	Abdulrhman Alqabandi (@Qab)
CVE-2022-26937: Microsoft Windows Network File System NLM Portmap Stack Buffer Overflow	Buffer Overflow Memory Corruption	Microsoft	Yuki Chen (@Guhe120) Guy Lederfein (@Glederfein) Jason McFadyen
Microsoft Dynamics Container Sandbox RCE via Unauthenticated Docker Remote API 20,000$ Bounty	RCE	Microsoft	Chen Cohen (@Chencococococo)
Spoofing Microsoft 365 Like It’s 1995	Spoofing Phishing	Microsoft	Steve Borosh (@424f424f)
How I was able to down a service of Microsoft ? Denial of Service (DOS) Attack on Microsoft.	DoS	Microsoft	Harsh Banshpal (@Harshbanshpal)
Kubernetes Privilege Escalation: Excessive Permissions in Popular Platforms	Privilege Escalation Broken Access Control Kubernetes	Google AWS Microsoft Red Hat	Yuval Avrahami (@Yuval_avrahami) Shaul Ben Hai
Hacking Swagger-UI - from XSS to account takeovers	DOM XSS Account Takeover	Shopify Paypal GitLab Atlassian Yahoo! / Verizon Media Microsoft Jamf	Dawid Moczadło (@Kannthu1)
New Wine in Old Bottle - Microsoft Sharepoint Post-Auth Deserialization RCE (CVE-2022-29108)	Insecure Deserialization RCE	Microsoft	Nguyễn Tiến Giang (@Testanull)
Certifried: Active Directory Domain Privilege Escalation (CVE-2022–26923)	Active Directory Privilege Escalation	Microsoft	Oliver Lyak (@Ly4k_)
Wiz Research discovers "ExtraReplica"— a cross-account database vulnerability in Azure PostgreSQL	Cross-Tenant Vulnerability Privilege Escalation Authentication Bypass Cloud	Microsoft	Shir Tamari (@Shirtamari) Ronen Shustin (@Ronenshh) Nir Ohfeld (@Nirohfeld) Sagi Tzadik (@Sagitz_)
Azure Monitor – Malicious KQL Query	Privilege Escalation Cloud	Microsoft	Joosua Santasalo (@SantasaloJoosua)

Page 5 of 13