CVE-2025-20281: Cisco ISE API Unauthenticated Remote Code Execution Vulnerability

July 25, 2025 | Bobby Gould CONTINUE READING

ZDI-20-709: Heap Overflow in the NETGEAR Nighthawk R6700 Router

Blog post

ZDI-20-709: Heap Overflow in the NETGEAR Nighthawk R6700 Router

June 25, 2020
NETGEAR, Wireless, 0-day, Exploit

Our CVE Story: Bringing our ZDI community to the CVE community

Blog post

Our CVE Story: Bringing our ZDI community to the CVE community

June 22, 2020
Program News, MITRE, CNA

CVE-2020-1181: SharePoint Remote Code Execution Through Web Parts

Blog post

CVE-2020-1181: SharePoint Remote Code Execution Through Web Parts

June 17, 2020
Microsoft, SharePoint, Research

A Trio of Bugs Used to Exploit Inductive Automation at Pwn2Own Miami

Blog post

A Trio of Bugs Used to Exploit Inductive Automation at Pwn2Own Miami

June 11, 2020
Pwn2Own, SCADA, Inductive Automation

The June 2020 Security Update Review

Blog post

The June 2020 Security Update Review

June 09, 2020
Microsoft, Adobe, Security Patch

MindShaRE: How to “Just Emulate It With QEMU”

Blog post

MindShaRE: How to “Just Emulate It With QEMU”

May 27, 2020
MindshaRE, Reverse Engineering, QEMU

CVE-2020-8871: Privilege Escalation in Parallels Desktop via VGA Device

Blog post

CVE-2020-8871: Privilege Escalation in Parallels Desktop via VGA Device

May 21, 2020
Parallels, Exploit, Research

The May 2020 Security Update Review

Blog post

The May 2020 Security Update Review

May 12, 2020
Adobe, Microsoft, Security Patch

Details on the Oracle WebLogic Vulnerability Being Exploited in the Wild

Blog post

Details on the Oracle WebLogic Vulnerability Being Exploited in the Wild

May 11, 2020
Oracle, WebLogic, Exploit

How a Deceptive Assert Caused a Critical Windows Kernel Vulnerability

Blog post

How a Deceptive Assert Caused a Critical Windows Kernel Vulnerability

May 07, 2020
Windows, Microsoft, Research