Olivia
Online
浑水摸鱼
@DavidJou734
Penetration Testing | Bounty Hunter|Threat Analysis | Happy Waste
加密投资 - 死磕 Arbitrum
Joined December 2022
779 Following
65 Followers
699 Posts
[1day-1line] CVE-2026-40369: Arbitrary Kernel Address Increment LPE/Sandbox Escape Vulnerability Caused by Untrusted Pointer Dereference in Windows Kernel(ntoskrnl.exe)
Hello, this is banda.
Today's 1day-1line covers an LPE/Sandbox Escape vulnerability in the Windows Kernel. In the NtQuerySystemInformation Class 253 path, Length=0 can bypass pointer validation and trigger a limited 12-byte kernel write primitive at an attacker-controlled kernel address, potentially leading to SYSTEM privilege escalation even from restricted environments such as a browser renderer sandbox.
Please refer to the blog post for more details!
https://t.co/wUPADuCioQ
![hackyboiz2's tweet photo. [1day-1line] CVE-2026-40369: Arbitrary Kernel Address Increment LPE/Sandbox Escape Vulnerability Caused by Untrusted Pointer Dereference in Windows Kernel(ntoskrnl.exe)
Hello, this is banda.
Today's 1day-1line covers an LPE/Sandbox Escape vulnerability in the Windows Kernel. In the NtQuerySystemInformation Class 253 path, Length=0 can bypass pointer validation and trigger a limited 12-byte kernel write primitive at an attacker-controlled kernel address, potentially leading to SYSTEM privilege escalation even from restricted environments such as a browser renderer sandbox.
Please refer to the blog post for more details!
https://t.co/wUPADuCioQ](https://pbs.twimg.com/media/HK_wgzhaYAAjXHE.png)
One of the latest and most notable Windows privilege escalation vulnerabilities is CVE-2025-62215 in the Windows Kernel - https://t.co/3BV6DBr20n
The flaw is a race condition caused by improper synchronization when multiple threads concurrently access shared kernel resources. By carefully winning this race, a local authenticated attacker can manipulate kernel state during execution and cause the operating system to perform privileged operations on behalf of the attacker. Successful exploitation allows escalation from a low-privileged user account to SYSTEM privileges, providing complete control over the affected machine.
Because race-condition bugs are often difficult to exploit reliably yet highly impactful when successful, CVE-2025-62215 attracted significant attention after Microsoft confirmed it was being actively exploited in the wild. The vulnerability was addressed in Microsoft's November 2025 security updates by correcting the synchronization logic and preventing unsafe concurrent access to the affected kernel resources.
The exploit has been tested in Windows 11 (Official channel + Canary) and Windows 10 with june 2026 patch installed. The PoC however does not work in Windows Server since standard users cannot mount an ISO image
https://t.co/bLQ1KWeUiB
We spent almost 2 years seeing this disclosure through… and then accidentally forgot to post it here. 😅
Never gonna give you up.
Never gonna let you down.
Never gonna run around and forget the advisory.
CVE-2026-41873 is now public:
https://t.co/oLFwiOCMfI
#APT37 ZIP(LNK) -> Python Backdoor
Webshell as always
ref:
https://t.co/CQOKhucDYy
github
https://t.co/JUqxxEu1sx
Windows bypasses EDR to implement DumpHash https://t.co/I1hidkt6qP
MAD Bugs: Discovering a 0-Day in Zero Day
Here’s how I used Claude to find and patch a radare2 0-day on my first day at @calif_io.
https://t.co/sAkSdMS0gh
Breaking Down CVE-2026-25049: How TypeScript Types Failed n8n's Security
https://t.co/VZVDeOt9e2
Exploit Demo & Analysis Article by 78ResearchLab(@78_lab)
CVE-2026-20817 : Windows Error Reporting(WER) Service Elevation of Privilege Vulnerability
https://t.co/x3x8XInNQU
#CVE_2026_20817 #LPE #Windows
Browser based tech support scam abusing full screen, input lock, and fake BSOD https://t.co/ny9IjdaeNT
The Great VM Escape: ESXi Exploitation in the Wild
VMware:CVE-2025-22226+CVE-2025-22224+CVE-2025-22225
https://t.co/x98bSiGuBY
Key:
When vmci.sys is loaded, it owns the VMCI adapter and actively uses these same I/O ports. Two drivers cannot safely share the same hardware, if both attempt to send commands simultaneously, it would corrupt the device state and crash the system. By disabling vmci.sys first, the exploit gains exclusive access to the VMCI hardware.
So what's cyberwarfare? In my book I explain the rationale for using this term. https://t.co/E7lriwnIss
CVE-2025-7771: Exploiting a Signed Kernel Driver in a Red Team Operation
https://t.co/oiA3iZTgUK
DLL Sideloading & Proxying basics:
https://t.co/Pj46WZAogs
How we got hit by Shai-Hulud: A complete post-mortem | https://t.co/cxmhPOWrSl https://t.co/c3ICSFyE17
New React Server Components Vulnerabilities: DoS and Source Code Exposure https://t.co/vkqPCEsgL6
SVG Clickjacking: A novel and powerful twist on an old classic https://t.co/kIrog7F0Vo
Last Seen Users on Sotwe
Raees | Malli Pudatama enti 🔥 
Seen from India
pass BBW Jaksel pinggiran
Seen from Indonesia
ali
Seen from Turkey
Aportes de Incesto Mx😈😈😝🇲🇽🇲🇽🇲🇽
Seen from Dominican Republic
소추의 사정일기
Seen from Japan
سعدیہ ملتانی بیگم(حجابی اتھری ملکانی)
Seen from Pakistan
Plis Entot Mamaku
Seen from Indonesia
Lonso Leone No PPV
Seen from United States
只做白袜直男的狗
Seen from Japan
N
Most Popular Users
Elon Musk
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.9M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.3M followers
Taylor Swift
@taylorswift13
81.1M followers
Lady Gaga
@ladygaga
72.7M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.3M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62M followers
CNN
@cnn
61.9M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.4M followers