Pwn2Own Berlin

Entity category: event

BigTech Companies

Sharepoint ToolShell Attacks Strike Global Orgs on 4 Continents

October 23, 2025
A hooded figure in a digital world, with pink binary code and city lights.

The ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint is a critical zero-day flaw that allows unauthenticated remote attackers to execute arbitrary…

Read More »
Business

Critical Redis Flaw Exposes Thousands of Instances

October 8, 2025
The Redis logo with its distinctive red stack and geometric shapes, set against a dynamic background of light streaks.

A critical security vulnerability (CVE-2025-49844) in Redis allows authenticated attackers to execute remote code via a use-after-free flaw in Lua…

Read More »
Cybersecurity

Microsoft SharePoint Zero-Day Exploited in RCE Attacks – No Fix Yet

July 22, 2025
SharePoint logo with teal and white design elements against a dark red background.

Microsoft SharePoint is under active attack via zero-day vulnerabilities (CVE-2025-53770 and CVE-2025-53771), enabling remote code execution on on-premises servers, with…

Read More »
Cybersecurity

Microsoft Patches Critical Wormable Windows Vulnerability (CVE-2025-47981)

July 10, 2025
A person examines code through a magnifying glass, highlighting the importance of Patch Tuesday for cybersecurity.

Microsoft’s July 2025 security updates address 130 vulnerabilities, including a critical wormable Windows flaw (CVE-2025-47981) that can spread automatically across…

Read More »