CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin

September 24, 2025 | Peter Girnus CONTINUE READING

CVE-2024-30043: Abusing URL Parsing Confusion to Exploit XXE on SharePoint Server and Cloud

Blog post

CVE-2024-30043: Abusing URL Parsing Confusion to Exploit XXE on SharePoint Server and Cloud

May 30, 2024
SharePoint, Microsoft, Research

MindShaRE: Decapping Chips for Electromagnetic Fault Injection (EMFI)

Blog post

MindShaRE: Decapping Chips for Electromagnetic Fault Injection (EMFI)

May 23, 2024
MindshaRE, Hardware, Research

The May 2024 Security Update Review

Blog post

The May 2024 Security Update Review

May 14, 2024
Apple, Security Patch, Microsoft, Adobe

CVE-2024-21115: An Oracle VirtualBox LPE Used to Win Pwn2Own

Blog post

CVE-2024-21115: An Oracle VirtualBox LPE Used to Win Pwn2Own

May 09, 2024
Pwn2Own, Oracle, VirtualBox

CVE-2024-2887: A Pwn2Own Winning Bug in Google Chrome

Blog post

CVE-2024-2887: A Pwn2Own Winning Bug in Google Chrome

May 02, 2024
Pwn2Own, Chrome, Edge

CVE-2024-20697: Windows Libarchive Remote Code Execution Vulnerability

Blog post

CVE-2024-20697: Windows Libarchive Remote Code Execution Vulnerability

April 17, 2024
Windows, RAR, Research

The April 2024 Security Updates Review

Blog post

The April 2024 Security Updates Review

April 09, 2024
Adobe, Security Patch, Microsoft

Pwn2Own Vancouver 2024 - Day Two Results

Blog post

Pwn2Own Vancouver 2024 - Day Two Results

March 21, 2024
Pwn2Own, Microsoft, Mozilla, Docker, VMware, Linux, Oracle

Pwn2Own Vancouver 2024 - Day One Results

Blog post

Pwn2Own Vancouver 2024 - Day One Results

March 20, 2024
Pwn2Own, Adobe, Tesla, Microsoft, Google, VMware, Linux

Pwn2Own Vancouver 2024 - The Full Schedule

Blog post

Pwn2Own Vancouver 2024 - The Full Schedule

March 19, 2024
Pwn2Own, Microsoft, Apple, Google, Tesla, VMware