| 946 | Guest Blog Post - Memory corruption vulnerabilities in Edge |
Browser hacking
Memory corruption
Use-After-Free
Out-of-bounds Read
Out-of-bounds Write |
Microsoft |
David Erceg (@david_erceg) |
Bug Bounty | 2022-10-17 | 2023-06-13 |
| 883 | A tale of a simple Apple kernel bug |
Out-of-bounds Read
Memory corruption
MacOS
iOS |
Apple |
Jordy Zomer (@pwningsystems) |
Bug Bounty | 2022-10-31 | 2023-06-13 |
| 577 | Security Audit of Git |
Memory corruption
Out-of-bounds Write
Out-of-bounds Read |
Git |
Markus Vervier (@marver) |
Bug Bounty | 2023-01-17 | 2023-06-13 |
| 304 | Vulnerabilities in the TPM 2.0 reference implementation code |
Memory corruption
Out-of-bounds Read
Out-of-bounds Write |
Microsoft
VMware
Google
IBM
Lenovo
Qemu
Nuvoton
Trusted Computing Group
STMicroelectronics
Aruba Networks
CERT/CC
libtpms |
Francisco Falcon (@fdfalcon) |
Bug Bounty | 2023-03-14 | 2023-06-13 |
| 165 | Compromising Garmin’s Sport Watches: A Deep Dive into GarminOS and its MonkeyC Virtual Machine |
IoT
Memory corruption
Buffer Overflow
Integer overflow
Out-of-bounds Read
Out-of-bounds Write
Type confusion
Permission bypass
Reverse engineering |
Garmin |
Tao Sauvage |
Bug Bounty | 2023-04-21 | 2023-06-13 |
| 127 | The Art of Information Disclosure: A Deep Dive into CVE-2022-37985, a Unique Information Disclosure Vulnerability in Windows Graphics Component |
Out-of-bounds Read
Memory corruption |
Microsoft (Windows) |
Bing Sun |
Bug Bounty | 2023-05-03 | 2023-06-13 |
| 74 | Blind OS Command Injection via Activation Request |
Memory corruption
Buffer Overflow
Out-of-bounds Read |
VMware |
Nguyễn Hoàng Thạch (@hi_im_d4rkn3ss) |
Bug Bounty | 2023-05-18 | 2023-06-13 |
| 53 | Exploiting The Sonos One Speaker Three Different Ways: A Pwn2Own Toronto Highlight |
Memory corruption
RCE
Out-of-bounds Read |
Sonos |
The ZDI Research Team (@thezdi) |
Bug Bounty | 2023-05-25 | 2023-06-13 |
