CVE-2025-20281: Cisco ISE API Unauthenticated Remote Code Execution Vulnerability

July 25, 2025 | Bobby Gould CONTINUE READING

When one corruption is not enough: Analyzing an Adobe Pwn2Own Exploit

Blog post

When one corruption is not enough: Analyzing an Adobe Pwn2Own Exploit

December 12, 2018
Adobe, Research, Pwn2Own

The December 2018 Security Update Review

Blog post

The December 2018 Security Update Review

December 11, 2018
Adobe, Microsoft, Security Patch

DirectX to the Kernel

Blog post

DirectX to the Kernel

December 04, 2018
Microsoft, GDI+, Research

The November 2018 Security Update Review

Blog post

The November 2018 Security Update Review

November 13, 2018
Microsoft, Adobe, Security Patch

Updates and New Targets Available in the Targeted Incentive Program

Blog post

Updates and New Targets Available in the Targeted Incentive Program

November 07, 2018
TIP, Program News, Research

Preventative Patching Produces Pwn2Own Participant’s Panic

Blog post

Preventative Patching Produces Pwn2Own Participant’s Panic

October 31, 2018
Webkit, JIT, Research

CVE-2018-4338: Triggering an Information Disclosure on macOS Through a Broadcom AirPort Kext

Blog post

CVE-2018-4338: Triggering an Information Disclosure on macOS Through a Broadcom AirPort Kext

October 24, 2018
macOS, Apple, Research

CVE-2018-8460: Exposing a Double Free in Internet Explorer for Code Execution

Blog post

CVE-2018-8460: Exposing a Double Free in Internet Explorer for Code Execution

October 18, 2018
Internet Explorer, Microsoft, Research

The October 2018 Security Update Review

Blog post

The October 2018 Security Update Review

October 09, 2018
Security Patch, Microsoft, Adobe

Onix: Finding Pokémon in your Acrobat (Revealing a new attack surface)

Blog post

Onix: Finding Pokémon in your Acrobat (Revealing a new attack surface)

October 02, 2018
Adobe, Research, Acrobat