Looking at the Attack Surfaces of the Kenwood DMX958XR IVI

November 21, 2024 | Connor Ford CONTINUE READING

CVE-2023-35150: Arbitrary Code Injection in XWiki.org XWiki

Blog post

CVE-2023-35150: Arbitrary Code Injection in XWiki.org XWiki

August 23, 2023
XWiki, Research, Exploit

The August 2023 Security Update Review

Blog post

The August 2023 Security Update Review

August 08, 2023
Adobe, Microsoft, Security Patch

Exploiting a Flaw in Bitmap Handling in Windows User-Mode Printer Drivers

Blog post

Exploiting a Flaw in Bitmap Handling in Windows User-Mode Printer Drivers

August 02, 2023
Microsoft, Kernel, LPE

CVE-2023-36934: Progress Software MOVEit Transfer SQL Injection Remote Code Execution Vulnerability

Blog post

CVE-2023-36934: Progress Software MOVEit Transfer SQL Injection Remote Code Execution Vulnerability

July 20, 2023
Progress, MOVEit, Research

The SOHO Smashup Returns for Pwn2Own Toronto 2023

Blog post

The SOHO Smashup Returns for Pwn2Own Toronto 2023

July 13, 2023
Pwn2Own, Synology, Apple, Google, Router

The July 2023 Security Update Review

Blog post

The July 2023 Security Update Review

July 11, 2023
Security Patch, Apple, Adobe, Microsoft

CVE-2023-20864: Remote Code Execution in VMware Aria Operations for Logs

Blog post

CVE-2023-20864: Remote Code Execution in VMware Aria Operations for Logs

June 29, 2023
VMware, Aria, Research

CVE-2022-31696: An Analysis of a VMware ESXi TCP Socket Keepalive Type Confusion LPE

Blog post

CVE-2022-31696: An Analysis of a VMware ESXi TCP Socket Keepalive Type Confusion LPE

June 22, 2023
VMware, ESXi, Research

The June 2023 Security Update Review

Blog post

The June 2023 Security Update Review

June 13, 2023
Security Patch, Adobe, Microsoft

Adventures in Disclosure: When Reporting Bugs Goes Wrong

Blog post

Adventures in Disclosure: When Reporting Bugs Goes Wrong

June 08, 2023
Program News, Disclosure, Pwn2Own