Pwn2Own Berlin 2026: Day Three Results and Master of Pw

May 16, 2026 | Dustin Childs CONTINUE READING

CVE-2026-33824: Remote Code Execution in Windows IKEv2

Blog post

CVE-2026-33824: Remote Code Execution in Windows IKEv2

April 23, 2026
Windows, IKE, Research

Node.js Trust Falls: Dangerous Module Resolution on Windows

Blog post

Node.js Trust Falls: Dangerous Module Resolution on Windows

April 08, 2026
Node.js, Research

CVE-2026-20841: Arbitrary Code Execution in the Windows Notepad

Blog post

CVE-2026-20841: Arbitrary Code Execution in the Windows Notepad

February 19, 2026
Windows, Notepad, Research

CVE-2025-6978: Arbitrary Code Execution in the Arista NG Firewall

Blog post

CVE-2025-6978: Arbitrary Code Execution in the Arista NG Firewall

February 05, 2026
Research, Arista, Firewall

Breaking Down the Attack Surface of the Kenwood DNR1007XR – Part Two

Blog post

Breaking Down the Attack Surface of the Kenwood DNR1007XR – Part Two

January 09, 2026
IVI, Kenwood, Research, Reverse Engineering

CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin

Blog post

CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin

September 24, 2025
NVIDIA, Research, AI, ML

CVE-2025-20281: Cisco ISE API Unauthenticated Remote Code Execution Vulnerability

Blog post

CVE-2025-20281: Cisco ISE API Unauthenticated Remote Code Execution Vulnerability

July 25, 2025
Cisco, Reverse Engineering, Research

Extracting Embedded MultiMediaCard (eMMC) contents in-system

Blog post

Extracting Embedded MultiMediaCard (eMMC) contents in-system

June 20, 2025
Research, Automotive, Hardware

CVE-2024-44236: Remote Code Execution vulnerability in Apple macOS

Blog post

CVE-2024-44236: Remote Code Execution vulnerability in Apple macOS

May 07, 2025
Apple, macOS, Research

SolarWinds Access Rights Manager: One Vulnerability to LPE Them All

Blog post

SolarWinds Access Rights Manager: One Vulnerability to LPE Them All

December 12, 2024
SolarWinds, Research, LPE