![xvonfers's tweet photo. (CVE-2025-8880)[$70000][433533359][wasm]Consumers of ReadableStream subject to data race with SharedArrayBuffer-> RCE + V8sbx bypass is now open with exploit(exploited in v8ctf as 0-day)
https://t.co/HHT8hhQzmW
https://t.co/iDouyBtz8O
Reported by Seunghyun Lee (@0x10n) https://t.co/2vxQREa5KT](https://pbs.twimg.com/media/G5GpBdxWwAAFoAs.jpg)
![xvonfers's tweet photo. (CVE-2025-8880)[$70000][433533359][wasm]Consumers of ReadableStream subject to data race with SharedArrayBuffer-> RCE + V8sbx bypass is now open with exploit(exploited in v8ctf as 0-day)
https://t.co/HHT8hhQzmW
https://t.co/iDouyBtz8O
Reported by Seunghyun Lee (@0x10n) https://t.co/2vxQREa5KT](https://pbs.twimg.com/media/G5Gorb6WIAE6Z41.jpg)
Olivia
Online
LJP
@ljp_tw
Joined April 2020
180 Following
64 Followers
97 Posts
That's a wrap on Pwn2Own Berlin 2026! 🏆 $1,298,250 awarded. 47 unique 0-days. 3 days of absolute chaos. And talk about main character energy - congrats to DEVCORE for claiming Master of Pwn with 50.5 points and $505,000 - they never slowed down. See you next year! #Pwn2Own #P2OBerlin
Booyah it's been confirmed! 🎉 splitline (@_splitline_) of DEVCORE Research Team chained 2 bugs to exploit Microsoft SharePoint, earning $100,000 and 10 Master of Pwn points. Massive aura farming this year at #P2OBerlin. Full win! #Pwn2Own
ATE AND LEFT NO CRUMBS! splitline (@_splitline_) of DEVCORE Research Team totally cooked and was able to exploit Microsoft SharePoint! If confirmed, they win $100,000 and 10 Master of Pwn points. They're skeddadling off to the disclosure room now to drop the lore. #Pwn2Own #P2OBerlin
And this one is human insight w/ LLM-assisted research. Took about one week to finish everything. The AI really rescued me from a lot of tedious work
— excluding the part where it changed the Domain Admin password, locked me out, and claimed it got RCE 🤦
Aaaand it's official! Orange Tsai (@orange_8361) of DEVCORE Research Team chained 3 bugs to achieve Remote Code Execution as SYSTEM on Microsoft Exchange, earning a whooping $200,000 and 20 Master of Pwn points. Full win! #Pwn2Own #P2OBerlin
There it is! Orange Tsai (@orange_8361) of DEVCORE Research Team was able to exploit Microsoft Exchange! If confirmed, they win a whooping $200,000 and 20 Master of Pwn points. Off to the disclosure room to explain how they did it and seal the deal. #Pwn2Own #P2OBerlin
That's my chain — a full chain w/ logic bugs only! No memory corruption, no AI, and of course no collisions at all 😉
DEVCORE is having a day! Confirmed: Angelboy (@scwuaptx) & TwinkleStar03 (@_twinklestar03) of DEVCORE Research Team used an Improper Access Control bug to escalate privileges on Microsoft Windows 11, earning $30,000 and 3 Master of Pwn points. Full win, let's go! 🔥 #Pwn2Own #P2OBerlin
In a video highlight from Day 1 of #Pwn2Own Berlin, @orange_8361 of DEVCORE Research Team (@d3vc0r3) takes on Microsoft Edge with a sandbox escape! He earns $175,000 and 17.5 Master of Pwn points. https://t.co/woZKoSTweK
Nice work! Angelboy & TwinkleStar03 (@scwuaptx & @_twinklestar03) of DEVCORE Research Team + DEVCORE Internship Program was able to exploit Microsoft Windows 11! If confirmed, they win $30,000 and 3 Master of Pwn points. They're off to the disclosure room to explain how they did it. #Pwn2Own #P2OBerlin
Confirmed! Orange Tsai (@orange_8361) of DEVCORE Research Team (@d3vc0r3) chained 4 logic bugs to achieve a sandbox escape on Microsoft Edge, earning $175,000 and 17.5 Master of Pwn points. Full win! #Pwn2Own #P2OBerlin
Amaze! Amaze! Amaze! Orange Tsai (@orange_8361) of DEVCORE Research Team (@d3vc0r3) was able to exploit Edge with a sandbox escape! If confirmed, we wins $175K. He's off to the disclosure room to explain how he did it. #Pwn2Own #P2OBerlin
Honestly, with a little LLM help, I found variants, built a working PoC, and sent a polished patch to maintainer on the same day CopyFail dropped. So I’m curious why Xint didn’t find those variants before disclosure, assuming AI tools are used heavily in their workflow👀
Disclaimer: I’m an independent reporter and the patch author of the xfrm-ESP vulnerability, unrelated to the Dirty Frag post.
My HEXACON talk video is out! It covers a small race condition in the Linux kernel’s io_uring. I recommend watching it at 1.25× speed since I’m still not great at speaking 😅
https://t.co/lMuweA7PyU
Here is the slide!
https://t.co/9jPoKMzxwL
This new 0day found by Google Big Sleep if not via fuzzing harness but purely by reasoning would be super cool!
Coincidence with the Gemini 3 seems pretty strong released today.
https://t.co/3XKBclPpfe
Remind us the Man Yue Mo inline cache blog and the history of this surface:
https://t.co/AbqiUaEzaI
Angelboy (@scwuaptx) takes the CODE BLUE 2025 stage with his latest findings in Kernel Streaming vulnerabilities -- this time diving deep into the MDL cache mechanism and unveiling even more vulnerabilities.
https://t.co/DSwuYooPeZ
#codeblue_jp #MSRC #VulnerabilityResearch
(CVE-2025-8880)[$70000][433533359][wasm]Consumers of ReadableStream subject to data race with SharedArrayBuffer-> RCE + V8sbx bypass is now open with exploit(exploited in v8ctf as 0-day)
https://t.co/HHT8hhQzmW
https://t.co/iDouyBtz8O
Reported by Seunghyun Lee (@0x10n)
![xvonfers's tweet photo. (CVE-2025-8880)[$70000][433533359][wasm]Consumers of ReadableStream subject to data race with SharedArrayBuffer-> RCE + V8sbx bypass is now open with exploit(exploited in v8ctf as 0-day)
https://t.co/HHT8hhQzmW
https://t.co/iDouyBtz8O
Reported by Seunghyun Lee (@0x10n) https://t.co/2vxQREa5KT](https://pbs.twimg.com/media/G5GpGhBWoAAjfsC.jpg)
(CVE-2025-5063)[$50000][411573532][vt/cc]Heap-UAF in cc::LayerTreeHost::NotifyTransitionRequestsFinished is now open with writeup, PoC & exploit
https://t.co/tYjvvikefd
PoC:
https://t.co/950aVbo34N
Writeup & exploit:
https://t.co/frExfaCC7s
Reported by "[f4@dnpushme]"
HITCON 2025 - Kernel 不死!Windows 與 Linux 核心漏洞的進擊💥
從 Windows 的 Kernel Streaming 到 Linux 的 net/sched 模組,現代作業系統儘管層層防護、緩解機制日新月異,但這些防線背後依然潛藏著漏洞溫床。在本次議程雙響炮中,我們將帶你直擊兩場由頂尖研究者針對核心漏洞的探索旅程——踏上學習進階漏洞利用與繞過緩解措施的技巧,全面揭示 OS 核心防線下仍持續滲漏的真實現況。
🎥 Frame by Frame, Kernel Streaming Keeps Giving Vulnerabilities - angelboy
Kernel Streaming 去年成為 Windows 核心中備受關注的攻擊面,講者將揭露超過 10 個「由網路攝影機影像輸入觸發」的全新漏洞類型,精心構造的 frame 可觸發任意實體記憶體寫入,有效繞過現代核心防禦機制。本議程不只拆解設計缺陷,也示範如何從看似無法利用的 bug 建立穩定提權 exploit,教你辨識更多本地提權機會並強化防禦思維。想知道影像如何攻破核心?這場絕對不容錯過!
🐧 正確入侵 Linux 的方式:Zero Day、嶄新技巧與失敗的教訓 - Pumpkin
Linux kernel 漏洞利用難度向來高,但這位講者在 kernelCTF 的實戰環境中,針對 net/sched 子系統漏洞運用兩項新穎技巧,成功在最新 LTS 版本實現提權至 root:
🔹 劫持次級物件,簡化 Use-After-Free (UAF) 漏洞利用
🔹 控制 kernel 變數,即使僅有 kernel base 洩漏,也能構造偽造物件或 ROP 鏈
除了技術細節,講者也會分享研究歷程與心得,談談 Linux kernel 研究心態、漏洞開發方法,以及從中衍生的嶄新技巧。
不論你是 Windows、Linux 陣營,這兩場演講都將帶你見識核心漏洞研究的尖端進展,學習如何發掘潛藏在現代作業系統中的設計破口,並掌握突破緩解機制的進階思維。
🔗購票連結:https://t.co/ShKVA1Sjnq
🎙️完整議程表:https://t.co/GyxPc2JL3e
#HITCON #HITCON2025 #漏洞研究 #提權攻擊 #資安議程
Most Popular Users
Elon Musk 
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.7M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.2M followers
Taylor Swift
@taylorswift13
81M followers
Lady Gaga
@ladygaga
72.6M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.2M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.8M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.3M followers