The December 2025 Security Update Review

December 09, 2025 | Dustin Childs CONTINUE READING
Detailing Two VMware Workstation TOCTOU Vulnerabilities
Blog post

Detailing Two VMware Workstation TOCTOU Vulnerabilities

CVE-2020-9715: Exploiting a Use-After-Free in Adobe Reader
Blog post

CVE-2020-9715: Exploiting a Use-After-Free in Adobe Reader

CVE-2020-7460: FreeBSD Kernel Privilege Escalation
Blog post

CVE-2020-7460: FreeBSD Kernel Privilege Escalation

CVE-2020-7454: Killing Two Birds with One Bug in libalias
Blog post

CVE-2020-7454: Killing Two Birds with One Bug in libalias

ZDI-20-709: Heap Overflow in the NETGEAR Nighthawk R6700 Router
Blog post

ZDI-20-709: Heap Overflow in the NETGEAR Nighthawk R6700 Router

CVE-2020-8871: Privilege Escalation in Parallels Desktop via VGA Device
Blog post

CVE-2020-8871: Privilege Escalation in Parallels Desktop via VGA Device

Details on the Oracle WebLogic Vulnerability Being Exploited in the Wild
Blog post

Details on the Oracle WebLogic Vulnerability Being Exploited in the Wild

CVE-2020-0932: Remote Code Execution on Microsoft SharePoint Using TypeConverters
Blog post

CVE-2020-0932: Remote Code Execution on Microsoft SharePoint Using TypeConverters

CVE-2020-8835: Linux Kernel Privilege Escalation via Improper eBPF Program Verification
Blog post

CVE-2020-8835: Linux Kernel Privilege Escalation via Improper eBPF Program Verification

Exploiting the TP-Link Archer A7 at Pwn2Own Tokyo
Blog post

Exploiting the TP-Link Archer A7 at Pwn2Own Tokyo