Pwn2Own Archives • Daily CyberSecurity

Synology BeeStation Flaw Chain Leads to Root RCE Via Novel “Dirty File Write” SQL Injection, PoC Available Synology BeeStation RCE, Dirty File Write Exploit

Synology BeeStation RCE, Dirty File Write Exploit

Synology BeeStation Flaw Chain Leads to Root RCE Via Novel “Dirty File Write” SQL Injection, PoC Available

Do Son December 4, 2025

In a display of vulnerability chaining, security researcher Kiddo has released a detailed write-up demonstrating how three...

Critical Synology BeeStation Zero-Day (CVE-2025-12686) Found at Pwn2Own Allows Remote Code Execution Synology Chat Server vulnerabilities Synology security update Synology DSM Update NAS Security Vulnerability Synology VPN Update SSL VPN Vulnerability Synology Telnet Flaw DSM Security Update Synology DSM Telnet vulnerability BeeStation Zero-Day, Pwn2Own RCE CVE-2024-11131 & CVE-2024-10442 CVE-2025-2848 Synology, NAS

Critical Synology BeeStation Zero-Day (CVE-2025-12686) Found at Pwn2Own Allows Remote Code Execution

Do Son November 11, 2025

Synology has released an urgent security update for its BeeStation OS, patching a zero-day vulnerability (CVE-2025-12686) that...

Critical Warning: QNAP Patches Seven Zero-Days Exploited at Pwn2Own 2025 QNAP Zero-Day, Pwn2Own Exploit CVE-2024-21899 - QNAP QTS vulnerability

Critical Warning: QNAP Patches Seven Zero-Days Exploited at Pwn2Own 2025

Do Son November 8, 2025

QNAP has issued an urgent security advisory and released patches for seven zero-day vulnerabilities that were successfully...

Broadcom Addresses Critical Vulnerabilities in VMware ESXi, Workstation, and Fusion VMware Vulnerabilities, Virtualization Security

Broadcom Addresses Critical Vulnerabilities in VMware ESXi, Workstation, and Fusion

Do Son July 15, 2025

Broadcom has issued an urgent advisory addressing four critical vulnerabilities affecting VMware ESXi, Workstation, Fusion, and Tools,...

Pwn2Own Berlin Recap: VMware ESXi, Windows 11 Hacked with Zero-Days

Do Son May 21, 2025

The renowned hacking competition, Pwn2Own 2025 Berlin, recently concluded with cybersecurity researchers securing a total of $1,078,750...

Pwn2Own: Firefox Hacked with JavaScript Zero-Days – Details on the Exploits Firefox security, JavaScript exploit

Pwn2Own: Firefox Hacked with JavaScript Zero-Days – Details on the Exploits

Do Son May 19, 2025

Mozilla has moved swiftly to patch two critical zero-day vulnerabilities in Firefox, both of which were exploited...

CVE-2024-10442 (CVSS 10): Zero-Click RCE in Synology DiskStation, PoC Publishes Synology vulnerability CVE-2024-10442 PoC

CVE-2024-10442 (CVSS 10): Zero-Click RCE in Synology DiskStation, PoC Publishes

Do Son May 1, 2025

A critical remote code execution (RCE) vulnerability has been disclosed in Synology’s DiskStation DS1823xs+, a popular NAS...

CVE-2025-23115 & CVE-2025-23116: Hackers Can Hijack Ubiquiti UniFi Protect Cameras

Do Son February 20, 2025

Ubiquiti, a leading provider of networking equipment, has issued a critical security advisory concerning multiple vulnerabilities discovered...

CVE-2024-50387: Critical QNAP Flaw Exploited in Hacking Contest, Patch Now! CVE-2024-50387 & CVE-2024-50389 QuRouter

CVE-2024-50387: Critical QNAP Flaw Exploited in Hacking Contest, Patch Now!

Do Son October 30, 2024

In a thrilling showdown at the recent Pwn2Own Ireland 2024 hacking competition, white hat hackers YingMuo (@YingMuo),...

CVE-2024-39349 (CVSS 9.8): Critical Vulnerability in Synology Surveillance Cameras

Do Son July 7, 2024

Recently, Synology, a leading network-attached storage (NAS) and surveillance solution provider, has updated its security advisory to...

Samsung Galaxy S23: Breached Twice on Pwn2Own’s First Day! Samsung Galaxy S23 Pwn2Own

Samsung Galaxy S23: Breached Twice on Pwn2Own’s First Day!

Do Son October 25, 2023

Pwn2Own, sponsored by ZDI, stands as one of the world’s most renowned and lucrative hacking competitions. Each...

Ubuntu & Tesla hacked in Pwn2Own Vancouver 2022 Ubuntu Pwn2Own

Ubuntu & Tesla hacked in Pwn2Own Vancouver 2022

Do Son May 21, 2022

The three-day Pwn2Own 2022 hackathon in Vancouver has come to an end this week. Pwn2Own is the...

Critical Alert 1 Active Exploit Detected Today