IoTSec Pulse
Home
Resources
Submit
Sign In
Home
Resources
Explore Awesome IoT Security Insights
One-stop hub for IoT security insights, analyses, tools and more.
Search Help
Query Filter Values
Built with
Dirstarter
© 2026 IoTSec Pulse. All rights reserved.
Privacy Policy
Terms of Service
Sitemap
Book
From Day Zero to Zero Day: A Hands-On Guide to Vulnerability Research
View on Amazon
IoTSec Pulse – Awesome IoT Security Insights
2026-01-09
CVE-2025-52691
poc
Do Smart People Ever Say They're Smart? (SmarterTools SmarterMail Pre-Auth RCE CVE-2025-52691)
SmarterTools
Mail Server
2026-01-08
2026-01-08
CVE-2024-22270
CVE-2024-22267
CVE-2024-30085
Pwn2Own
UAF
Guest Revolution: Our Story of Compromising the Host Kernel from the VMware Guest
VMware
Virtualization
2024-11-06
CVE-2024-22270
CVE-2024-22267
CVE-2024-30085
slides
Pwn2Own
UAF
Guest Revolution: Our Story of Compromising the Host Kernel from the VMware Guest
VMware
Virtualization
2024-10-04
slides
TOCTOU
Bug Tamer: Turning Limited Heap Overflow into Full VMware Escape
VMware
Virtualization
2025-11-14
reverse engineering
MindShaRE: Analysis of VMware Workstation and ESXi Using Debug Symbols from Flings
VMware
Virtualization
2021-01-07
CVE-2024-45431
CVE-2024-45432
CVE-2024-45433
CVE-2024-45434
slides
BLE
IVI
UAF
PerfektBlue: Universal 1-click Exploit to Pwn Automotive Industry - Mercedes-Benz, Volkswagen, Skoda, and others
Mercedes-Benz
Volkswagen
Skoda
BMW
Audi
Automotive
2025-11-13
CVE-2026-21858
n8n
Ni8mare - Unauthenticated Remote Code Execution in n8n (CVE-2026-21858)
Other
AI
2026-01-07
2026-01-07
CVE-2025-34392
CVE-2025-13659
.NET
SOAPwn: Pwning .NET Framework Applications Through HTTP Client Proxies And WSDL
Microsoft
Barracuda
Ivanti
Umbraco
Application
2025-12-10
CVE-2025-34392
CVE-2025-13659
whitepaper
.NET
SOAPwn: Pwning .NET Framework Applications Through HTTP Client Proxies And WSDL
Microsoft
Barracuda
Ivanti
Umbraco
Application
2025-12-10
CVE-2025-34392
CVE-2025-13659
slides
.NET
SOAPwn: Pwning .NET Framework Applications Through HTTP Client Proxies And WSDL
Microsoft
Barracuda
Ivanti
Umbraco
Application
2025-12-10
2026-01-05
CVE-2021-4034
pkexec
CVE-2021-4034: A Walkthrough of Pwnkit - the Latest Linux Privileges Escalation Vulnerability
Other
Other
2022-01-27
CVE-2021-4034
pkexec
PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit's pkexec (CVE-2021-4034)
Other
Other
2022-01-26
CVE-2021-4034
pkexec
pwnkit: Local Privilege Escalation in polkit's pkexec (CVE-2021-4034)
Other
Other
2022-01-25
CVE-2025-37164
poc
CVE-2025-37164
Hewlett Packard Enterprise
Application
2025-12-16
2025-12-26
VxWorks
VxHunter: A ToolSet for VxWorks Based Embedded Device Analyses
Other
Other
2017-12-05
slides
VxWorks
Dive into VxWorks Based IoT Device: Debug the Undebugable Device
TP-Link
Router
2019-03-29
2025-12-25
CVE-2025-70631
CVE-2025-70632
CVE-2025-20713
CVE-2025-20714
CVE-2025-20715
CVE-2025-20717
CVE-2025-20718
CVE-2025-20731
CVE-2025-20732
CVE-2025-20733
CVE-2025-20734
CVE-2025-20735
CVE-2025-20736
CVE-2025-20737
CVE-2025-20738
CVE-2025-20739
poc
mediatek? more like media-rekt, amirite.
MediaTek
Chip
2025-12-15
2025-12-09
CVE-2025-55182
CVE-2025-66478
prototype pollution
Next.js Server Actions RCE Vulnerability Analysis
Other
Web Framework
2025-12-05
CVE-2024-50630
CVE-2024-50629
CVE-2024-50631
slides
Pwn2Own
authentication bypass
CRLF injection
sql injection
Writing Sync, Reading Shell
Synology
NAS
2025-03-16
2025-12-02
CVE-2024-50630
CVE-2024-50629
CVE-2024-50631
Pwn2Own
poc
authentication bypass
CRLF injection
sql injection
Writing Sync, Popping Cron: DEVCORE's Synology BeeStation RCE & A Novel SQLite Injection RCE Technique (CVE-2024-50629~50631)
Synology
NAS
2025-11-30
