Pwn2Own Berlin 2025: Day Three Results

May 17, 2025 | Dustin Childs CONTINUE READING
CVE-2024-44236: Remote Code Execution vulnerability in Apple macOS
Blog post

CVE-2024-44236: Remote Code Execution vulnerability in Apple macOS

CVE-2024-43639: Remote Code Execution in Microsoft Windows KDC Proxy
Blog post

CVE-2024-43639: Remote Code Execution in Microsoft Windows KDC Proxy

CVE-2024-37079: VMware vCenter Server Integer Underflow Code Execution Vulnerability
Blog post

CVE-2024-37079: VMware vCenter Server Integer Underflow Code Execution Vulnerability

CVE-2024-20697: Windows Libarchive Remote Code Execution Vulnerability
Blog post

CVE-2024-20697: Windows Libarchive Remote Code Execution Vulnerability

CVE-2023-36049: Microsoft .NET CRLF Injection Arbitrary File Write/Deletion Vulnerability
Blog post

CVE-2023-36049: Microsoft .NET CRLF Injection Arbitrary File Write/Deletion Vulnerability

CVE-2023-46263: Ivanti Avalanche Arbitrary File Upload Vulnerability
Blog post

CVE-2023-46263: Ivanti Avalanche Arbitrary File Upload Vulnerability

How To: Modifying EV Chargers for Benchtop Experiments
Blog post

How To: Modifying EV Chargers for Benchtop Experiments

CVE-2023-35150: Arbitrary Code Injection in XWiki.org XWiki
Blog post

CVE-2023-35150: Arbitrary Code Injection in XWiki.org XWiki

CVE-2023-36934: Progress Software MOVEit Transfer SQL Injection Remote Code Execution Vulnerability
Blog post

CVE-2023-36934: Progress Software MOVEit Transfer SQL Injection Remote Code Execution Vulnerability

CVE-2023-20864: Remote Code Execution in VMware Aria Operations for Logs
Blog post

CVE-2023-20864: Remote Code Execution in VMware Aria Operations for Logs