Announcing Pwn2Own Berlin for 2026

March 12, 2026 | Dustin Childs CONTINUE READING
CVE-2026-20841: Arbitrary Code Execution in the Windows Notepad
Blog post

CVE-2026-20841: Arbitrary Code Execution in the Windows Notepad

CVE-2025-6978: Arbitrary Code Execution in the Arista NG Firewall
Blog post

CVE-2025-6978: Arbitrary Code Execution in the Arista NG Firewall

Breaking Down the Attack Surface of the Kenwood DNR1007XR – Part Two
Blog post

Breaking Down the Attack Surface of the Kenwood DNR1007XR – Part Two

CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin
Blog post

CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin

CVE-2025-20281: Cisco ISE API Unauthenticated Remote Code Execution Vulnerability
Blog post

CVE-2025-20281: Cisco ISE API Unauthenticated Remote Code Execution Vulnerability

Extracting Embedded MultiMediaCard (eMMC) contents in-system
Blog post

Extracting Embedded MultiMediaCard (eMMC) contents in-system

CVE-2024-44236: Remote Code Execution vulnerability in Apple macOS
Blog post

CVE-2024-44236: Remote Code Execution vulnerability in Apple macOS

SolarWinds Access Rights Manager: One Vulnerability to LPE Them All
Blog post

SolarWinds Access Rights Manager: One Vulnerability to LPE Them All

From Pwn2Own Automotive: More Autel Maxicharger Vulnerabilities
Blog post

From Pwn2Own Automotive: More Autel Maxicharger Vulnerabilities

Exploiting Exchange PowerShell After ProxyNotShell: Part 4 – No Argument Constructor
Blog post

Exploiting Exchange PowerShell After ProxyNotShell: Part 4 – No Argument Constructor