Zero Day Initiative | Blog
Follow
Pwn2Own Berlin 2026: Day Three Results and Master of Pwn
Pwn2Own Berlin 2026 concluded its third and final day, showcasing impressive research and exploitation techniques. Over the three days, a total of $908,750 was awarded for 39 unique zero-day vulnerabilities. Today's targets included Red Hat Linux, Windows 11, OpenAI Codex, VMware ESXi, and Anthropic Claude Code. Sina Kheirkhah of Summoning Team successfully exploited Red Hat Linux, receiving $7,000 for a partially known bug. Viettel Cyber Security earned $7,500 by exploiting Windows 11 using an integer overflow for privilege escalation. Satoki Tsuji of Ikotas Labs, Inc. successfully exploited OpenAI Codex, earning $20,000. Giuseppe Calì of Summoning Team was unsuccessful in exploiting VMware ESXi. Compass Security successfully targeted Anthropic Claude Code, receiving $20,000 despite a vulnerability collision. Hyunwoo Kim chained vulnerabilities to escalate privileges on Red Hat Enterprise Linux, earning $5,000.