Security researchers demonstrated multiple zero-day exploits during Pwn2Own Berlin 2025, earning over $260,000 in rewards. The vulnerabilities targeted Windows 11, Red Hat Linux, and Oracle VirtualBox, highlighting significant enterprise security risks.
Affected: Windows 11, Red Hat Linux, Oracle VirtualBox
Affected: Windows 11, Red Hat Linux, Oracle VirtualBox
Keypoints
- Researchers successfully demonstrated zero-day exploits on Windows 11, Red Hat Linux, and Oracle VirtualBox.
- Critical vulnerabilities included use-after-free, integer overflow, and out-of-bounds write vulnerabilities.
- The competition highlighted the importance of patching and timely security updates within 90 days of vulnerability disclosure.
- Participants targeted enterprise technologies including virtualization, operating systems, and AI frameworks.
- The event offers over $1 million in prizes, encouraging researchers to find and responsibly disclose security flaws.