CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin

September 24, 2025 | Peter Girnus CONTINUE READING

Privilege Escalation Via the Core Shell COM Registrar Object

Blog post

Privilege Escalation Via the Core Shell COM Registrar Object

December 20, 2019
Top 5, Windows, Research

Regular Exploitation of a Tesla Model 3 through Chromium RegExp

Blog post

Regular Exploitation of a Tesla Model 3 through Chromium RegExp

December 19, 2019
Top 5, Tesla, Pwn2Own

Looking Back at the Impact of CVE-2019-0604: A SharePoint RCE

Blog post

Looking Back at the Impact of CVE-2019-0604: A SharePoint RCE

December 18, 2019
Top 5, SharePoint, Research

Local Privilege Escalation in Win32k.sys Through Indexed Color Palettes

Blog post

Local Privilege Escalation in Win32k.sys Through Indexed Color Palettes

December 17, 2019
Top 5, Windows, Research

Syncing out of the Firefox sandbox

Blog post

Syncing out of the Firefox sandbox

December 16, 2019
Top 5, Firefox, Sandbox Escape

The December 2019 Security Update Review

Blog post

The December 2019 Security Update Review

December 10, 2019
Security Patch, Adobe, Microsoft

CVE-2019-9512 – A Microsoft Windows HTTP/2 Ping Flood Denial of Service

Blog post

CVE-2019-9512 – A Microsoft Windows HTTP/2 Ping Flood Denial of Service

December 05, 2019
Research, HTTP, DoS

MindShaRE: Hardware Reversing with the TP-Link TL-WR841N Router - Part 2

Blog post

MindShaRE: Hardware Reversing with the TP-Link TL-WR841N Router - Part 2

December 02, 2019
TPLink, MindshaRE, Router, Exploit

Diving Deep Into a Pwn2Own Winning WebKit Bug

Blog post

Diving Deep Into a Pwn2Own Winning WebKit Bug

November 26, 2019
Apple, WebKit, Research

Thanksgiving Treat: Easy-as-Pie Windows 7 Secure Desktop Escalation of Privilege

Blog post

Thanksgiving Treat: Easy-as-Pie Windows 7 Secure Desktop Escalation of Privilege

November 19, 2019
Microsoft, Windows, Research, UAC