CVE-2025-20281: Cisco ISE API Unauthenticated Remote Code Execution Vulnerability

July 25, 2025 | Bobby Gould CONTINUE READING

Finding Deserialization Bugs in the SolarWinds Platform

Blog post

Finding Deserialization Bugs in the SolarWinds Platform

September 21, 2023
SolarWinds, Deserialization, Research

Pwn2Owning Two Hosts at the Same Time: Abusing Inductive Automation Ignition’s Custom Deserialization

Blog post

Pwn2Owning Two Hosts at the Same Time: Abusing Inductive Automation Ignition’s Custom Deserialization

February 08, 2023
Inductive Automation, Pwn2Own, Deserialization

Riding the InfoRail to Exploit Ivanti Avalanche – Part 2

Blog post

Riding the InfoRail to Exploit Ivanti Avalanche – Part 2

September 08, 2022
Ivanti, Deserialization, Research