Vulnerabilities
A running list of security vulnerabilities I've discovered and disclosed. Entries contain links to the relevant advisory, fix commit, or tracker where available.
| Product | Component | CVE | Remarks |
|---|---|---|---|
| Linux | Netfilter | CVE-2022-32250 / ZDI-26-191 |
Pwn2Own Vancouver 2022 LPE for Ubuntu 22.04
Security advisory |
| Linux | Wireless | – |
Integer overflow in the Wi-Fi nl80211 module. Submitted the patch to the Linux kernel maintainers and did not request for a CVE. Fix commit |
| Arm Mali GPU | Kernel driver - Command Stream Frontend | – |
Use-After-Free bug. Variant of CVE-2022-42716 with no CVE assigned. Allows Google Pixel 7 / 7 Pro LPE.
Google Issue 270529096 |
| Wazuh | logcollector | CVE-2023-42463 / ZDI-CAN-22015 |
Integer underflow allowing LPE.
Security advisory |
| Alcatel AP1361D | Web management interface | CVE-2025-52688 |
Multiple command injections in WiFi access point. Found during SPIRITCYBER-2024.
Security advisory |
| Apple | Software Update | CVE-2025-43243 |
TOCTOU issue leading to SIP write-restriction bypass, enabling LPE on macOS.
Security advisory |