Pwn2Own Berlin 2025: Day Three Results

May 17, 2025 | Dustin Childs CONTINUE READING
Abusing Arbitrary File Deletes to Escalate Privilege and Other Great Tricks
Blog post

Abusing Arbitrary File Deletes to Escalate Privilege and Other Great Tricks

CVE-2021-44142: Details on a Samba Code Execution Bug Demonstrated at Pwn2Own Austin
Blog post

CVE-2021-44142: Details on a Samba Code Execution Bug Demonstrated at Pwn2Own Austin

CVE-2021-44790: Code Execution on Apache via an Integer Underflow
Blog post

CVE-2021-44790: Code Execution on Apache via an Integer Underflow

CVE-2022-21661: Exposing Database Info via WordPress SQL Injection
Blog post

CVE-2022-21661: Exposing Database Info via WordPress SQL Injection

Pwn2Own Vancouver Returns for the 15th Anniversary of the Contest
Blog post

Pwn2Own Vancouver Returns for the 15th Anniversary of the Contest

CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor
Blog post

CVE-2021-45105: Denial of Service via Uncontrolled Recursion in Log4j StrSubstitutor

CVE-2021-28632 & CVE-2021-39840: Bypassing Locks in Adobe Reader
Blog post

CVE-2021-28632 & CVE-2021-39840: Bypassing Locks in Adobe Reader

CVE-2021-26420: Remote Code Execution in SharePoint via Workflow Compilation
Blog post

CVE-2021-26420: Remote Code Execution in SharePoint via Workflow Compilation

CVE-2021-26084: Details on the Recently Exploited Atlassian Confluence OGNL Injection Bug
Blog post

CVE-2021-26084: Details on the Recently Exploited Atlassian Confluence OGNL Injection Bug

Analysis of a Parallels Desktop Stack Clash Vulnerability and Variant Hunting using Binary Ninja
Blog post

Analysis of a Parallels Desktop Stack Clash Vulnerability and Variant Hunting using Binary Ninja