Pwn2Own Berlin 2025: Day Two R... Note

Pwn2Own Berlin 2025: Day Two Results

Pwn2Own Berlin's second day concluded with $435,000 awarded, bringing the total contest prize money to $695,000. Researchers demonstrated 20 unique zero-day vulnerabilities throughout the competition so far. FuzzingLabs exploited NVIDIA Triton with a known but unpatched vulnerability, earning them a partial reward. Viettel Cyber Security successfully exploited Microsoft SharePoint using an authentication bypass and insecure deserialization. STAR Labs achieved a historic first by exploiting VMware ESXi with an integer overflow. Palo Alto Networks exploited Mozilla Firefox using an out-of-bounds write. Wiz Research successfully exploited Redis, marking another AI category win. Qrious Secure achieved a full win against NVIDIA Triton with a four-bug chain. Viettel Cyber Security also performed a guest-to-host escape on Oracle VirtualBox. STAR Labs further escalated privileges on Red Hat Enterprise Linux.
CdXz5zHNQW_21pM5QvsTq.jpeg