Safety researchers showcased 28 zero-day vulnerabilities in the course of the Pwn2Own contest held in the course of the OffensiveCon convention in Berlin that ended on Saturday. The issues allowed moral hackers to compromise software program merchandise used throughout most enterprises together with Microsoft Home windows 11, Crimson Hat Linux for Workstations, Mozilla Firefox, VMware ESXi, VMware Workstation, Oracle VirtualBox, Microsoft SharePoint, Docker, Redis, Chroma, NVIDIA Triton Inference Server and NVIDIA Container Toolkit.
The Pwn2Own contest has been working yearly at safety conferences for the previous 18 years. It’s organized by Pattern Micro’s Zero Day Initiative (ZDI), a bug bounty program via which researchers can report vulnerabilities to distributors and receives a commission for reporting them. ZDI makes use of the advance information of those flaws to develop safety guidelines for Pattern Micro’s prospects.
Taking part groups of researchers gathered factors and financial rewards for profitable makes an attempt at showcasing their exploits towards the introduced targets. In whole, the competition paid out $1,078,750, with $320,000 going to the primary place Singapore-based cybersecurity consultancy agency STAR Labs SG.
