CVE-2025-1914 - Out-of-Bounds Read in Google Chrome’s V8 – How Attackers Can Exploit a Simple Crafted HTML Page
Google Chrome has long been the most popular web browser in the world, offering cutting-edge speed and security. But even Chrome isn’t immune to
CVE-2024-11957 - Breaking Down an Unpatched Digital Signature Bug in Kingsoft WPS Office (ksojscore.dll) Enabling Arbitrary DLL Loading
Kingsoft WPS Office is a widely-used productivity suite that's especially popular in China and among users who want a free alternative to Microsoft
CVE-2025-1930: Windows AudioIPC Use-After-Free Vulnerability in Firefox and Thunderbird: Exploiting StreamData for Sandbox Escape
The CVE-2025-1930 vulnerability was first discovered impacting Windows users running older versions of Firefox and Thunderbird. This security flaw compromises the content process using malicious
CVE-2025-22225 - Breaking Out of VMware ESXi - A Deep Dive into the New Arbitrary Write Vulnerability
---
TL;DR:
This post covers the newly discovered CVE-2025-22225: an arbitrary kernel write vulnerability in VMware ESXi. We’ll explain how it works, demonstrate
CVE-2025-0288 - Paragon biontdrv.sys Kernel Privilege Escalation Vulnerability – Full Breakdown and Exploit Details
*Affected Products: Paragon Hard Disk Manager and other Paragon Software products (Windows)*
*Vulnerability: Arbitrary Kernel Memory Write in biontdrv.sys*
*CVSS Score: 8.8 (High)
Episode
00:00:00
00:00:00