As part of CRAC Learning's CVE Analysis Program, the participants analyzed some of the recent and widely exploited CVEs. To complete the analysis, the exploits were reproduced on test environment in addition to understanding the root cause of vulnerability itself. The analysis reports of below listed CVEs are documented here by corresponding authors
CVE-2022-1388 (BIG-IP RCE) by @kartikeyj96
CVE-2022-0847 (Dirty Pipe) by @Yogesh-7523
CVE-2021-4034 (Polkit priv esc) by @karan2101n
CVE-2022-30190 (Follina) by @jalajbhaskar
CVE-2022–22965 (Spring4shell) by @Yogesh-7523
CVE-2022-26134 (Atlassian Confluence RCE) by @karan2101n
CVE-2022-44228 (log4shell) by @kartikeyj96
CVE-2022-26923 (AD-CS) by @kartikeyj96
CVE-2022-24734 (RCE in MyBB Admin CP) by @kartikeyj96
CVE-2022-23940 (RCE_in_SuiteCRM) by @jalajbhaskar
CVE-2022-1329 (Wordpress Elementor plugin) by @Yogesh-7523