ZeroPath at Black Hat USA 2026

ZeroPath Blog & Research

Explore our team's latest research and stay up to date with ZeroPath's capabilities.
Quick Look: CVE-2026-9112, a Use After Free in Google Chrome's GPU Component Enabling Sandbox Code Execution
CVE Analysis

2026-05-20

5 min read

Quick Look: CVE-2026-9112, a Use After Free in Google Chrome's GPU Component Enabling Sandbox Code Execution

A brief summary of CVE-2026-9112, a high severity use after free vulnerability in Google Chrome's GPU process on Windows that allows remote code execution inside the sandbox via a crafted HTML page.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Quick Look: CVE-2026-9114, Use After Free in Google Chrome's QUIC Implementation Enables Remote Code Execution
CVE Analysis

2026-05-20

5 min read

Quick Look: CVE-2026-9114, Use After Free in Google Chrome's QUIC Implementation Enables Remote Code Execution

A brief summary of CVE-2026-9114, a high severity use after free vulnerability in Google Chrome's QUIC protocol stack that allows remote code execution inside the browser sandbox via crafted network traffic. Covers technical details, affected versions, and mitigation options.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Quick Look: CVE-2026-9117 — Type Confusion in Chrome GFX Enables Sandbox Escape on Linux and ChromeOS
CVE Analysis

2026-05-20

5 min read

Quick Look: CVE-2026-9117 — Type Confusion in Chrome GFX Enables Sandbox Escape on Linux and ChromeOS

A brief summary of CVE-2026-9117, a high severity type confusion vulnerability in Google Chrome's GFX component that can allow sandbox escape on Linux and ChromeOS when chained with a renderer compromise.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Quick Look: Google Chrome XR Use After Free RCE (CVE-2026-9118)
CVE Analysis

2026-05-20

5 min read

Quick Look: Google Chrome XR Use After Free RCE (CVE-2026-9118)

A brief summary of CVE-2026-9118, a high severity use after free vulnerability in Google Chrome's XR component on Windows that enables remote code execution via a crafted HTML page.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Brief Summary: CVE-2026-9119 Heap Buffer Overflow in Google Chrome WebRTC Enables Sandboxed Code Execution
CVE Analysis

2026-05-20

6 min read

Brief Summary: CVE-2026-9119 Heap Buffer Overflow in Google Chrome WebRTC Enables Sandboxed Code Execution

A short review of CVE-2026-9119, a high severity heap buffer overflow in Google Chrome's WebRTC component that allows remote code execution inside the renderer sandbox via a crafted HTML page. Patch information and affected version details are included.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Quick Look: CVE-2026-9120, a Use After Free in Google Chrome's WebRTC Component Enabling Remote Code Execution
CVE Analysis

2026-05-20

5 min read

Quick Look: CVE-2026-9120, a Use After Free in Google Chrome's WebRTC Component Enabling Remote Code Execution

A brief summary of CVE-2026-9120, a high severity use after free vulnerability in Google Chrome's WebRTC component that allows remote code execution via a crafted HTML page. Includes patch information and affected version details.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Quick Look: CVE-2026-9121, Out of Bounds Read in Google Chrome GPU Subsystem
CVE Analysis

2026-05-20

6 min read

Quick Look: CVE-2026-9121, Out of Bounds Read in Google Chrome GPU Subsystem

A brief summary of CVE-2026-9121, an out of bounds read in Chrome's GPU process that can lead to heap corruption via crafted HTML. Includes patch details and affected version information.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Google Chrome CVE-2026-9126: Brief Summary of a Use After Free in the DOM Engine
CVE Analysis

2026-05-20

5 min read

Google Chrome CVE-2026-9126: Brief Summary of a Use After Free in the DOM Engine

A short review of CVE-2026-9126, a high severity use after free vulnerability in Google Chrome's DOM engine that enables remote code execution inside the renderer sandbox via a crafted HTML page. Patch information and affected versions are included.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Eclipse GlassFish CVE-2026-2586: Brief Summary of a Critical Expression Language Injection Leading to Remote Code Execution
CVE Analysis

2026-05-19

6 min read

Eclipse GlassFish CVE-2026-2586: Brief Summary of a Critical Expression Language Injection Leading to Remote Code Execution

A brief summary of CVE-2026-2586, a critical Expression Language injection vulnerability in the Eclipse GlassFish Administration Console that allows authenticated administrators to execute arbitrary OS commands via crafted requests.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Eclipse GlassFish CVE-2026-2587: Brief Summary of a Critical EL Injection Leading to Remote Code Execution
CVE Analysis

2026-05-19

7 min read

Eclipse GlassFish CVE-2026-2587: Brief Summary of a Critical EL Injection Leading to Remote Code Execution

A brief summary of CVE-2026-2587, a critical Expression Language injection vulnerability in Eclipse GlassFish's gadget handler that enables remote code execution with a CVSS score of 9.6.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Kitty Terminal CVE-2026-33642: Overview of a Zero Interaction Heap Corruption via Integer Overflow in Graphics Protocol
CVE Analysis

2026-05-19

7 min read

Kitty Terminal CVE-2026-33642: Overview of a Zero Interaction Heap Corruption via Integer Overflow in Graphics Protocol

A brief summary of CVE-2026-33642, a critical integer overflow vulnerability in the Kitty terminal emulator that enables heap buffer over-read and over-write via crafted escape sequences, along with patch details and mitigation guidance.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

CtrlPanel CVE-2026-34234: Brief Summary of a Critical Unauthenticated RCE in the Web Installer
CVE Analysis

2026-05-19

6 min read

CtrlPanel CVE-2026-34234: Brief Summary of a Critical Unauthenticated RCE in the Web Installer

A brief summary of CVE-2026-34234, a CVSS 10.0 unauthenticated remote code execution vulnerability in CtrlPanel's web installer that is actively exploited in the wild, affecting versions 1.1.1 and prior.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Creative Mail WordPress Plugin CVE-2026-3985: Brief Summary of Unauthenticated SQL Injection via checkout_uuid
CVE Analysis

2026-05-19

5 min read

Creative Mail WordPress Plugin CVE-2026-3985: Brief Summary of Unauthenticated SQL Injection via checkout_uuid

A brief summary of CVE-2026-3985, a high severity unauthenticated SQL injection vulnerability in the Creative Mail plugin for WordPress affecting all versions up to and including 1.6.9. The flaw allows remote attackers to extract sensitive database information without authentication.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Rsync CVE-2026-43618: Brief Summary of Integer Overflow Leading to Remote Memory Disclosure
CVE Analysis

2026-05-19

6 min read

Rsync CVE-2026-43618: Brief Summary of Integer Overflow Leading to Remote Memory Disclosure

A short review of CVE-2026-43618, an integer overflow in rsync's compressed token decoder that allows a malicious sender to leak sensitive process memory from the receiver, including passwords, environment variables, and ASLR defeating memory pointers.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Brief Summary: CVE-2026-47100 Missing Authorization in FunnelKit Funnel Builder Enables Checkout Page Skimming on 40,000+ WooCommerce Stores
CVE Analysis

2026-05-19

6 min read

Brief Summary: CVE-2026-47100 Missing Authorization in FunnelKit Funnel Builder Enables Checkout Page Skimming on 40,000+ WooCommerce Stores

A brief summary of CVE-2026-47100, a missing authorization flaw in the Funnel Builder for WooCommerce Checkout plugin that allows unauthenticated attackers to inject JavaScript skimmers into checkout pages. Active exploitation has been confirmed by Sansec researchers targeting over 40,000 WooCommerce stores.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Windmill CVE-2026-47107: Brief Summary of Cross Tenant DNS Poisoning via nsjail Sandbox Misconfiguration
CVE Analysis

2026-05-19

7 min read

Windmill CVE-2026-47107: Brief Summary of Cross Tenant DNS Poisoning via nsjail Sandbox Misconfiguration

A brief summary of CVE-2026-47107, a critical incorrect default permissions flaw in Windmill's nsjail sandbox configuration that allows authenticated users to poison DNS entries and intercept credentials across tenant boundaries on shared worker pods.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Memcached CVE-2026-47783: Brief Summary of the SASL Timing Side Channel Vulnerability
CVE Analysis

2026-05-19

6 min read

Memcached CVE-2026-47783: Brief Summary of the SASL Timing Side Channel Vulnerability

A brief summary of CVE-2026-47783, a high severity timing side channel in memcached's SASL authentication that could allow remote username enumeration and password byte extraction in versions before 1.6.42.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Quick Look: CVE-2026-4885 — Unauthenticated Arbitrary File Upload in Piotnet Addons for Elementor Pro
CVE Analysis

2026-05-19

6 min read

Quick Look: CVE-2026-4885 — Unauthenticated Arbitrary File Upload in Piotnet Addons for Elementor Pro

A brief summary of CVE-2026-4885, a critical unauthenticated arbitrary file upload vulnerability in Piotnet Addons for Elementor Pro versions up to 7.1.70, caused by an incomplete file extension blacklist that allows dangerous extensions like .phar and .phtml.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Account Switcher for WordPress CVE-2026-6456: Brief Summary of a Privilege Escalation via REST API Authentication Bypass
CVE Analysis

2026-05-19

6 min read

Account Switcher for WordPress CVE-2026-6456: Brief Summary of a Privilege Escalation via REST API Authentication Bypass

A brief summary of CVE-2026-6456, a CVSS 8.8 authentication bypass in the Account Switcher WordPress plugin that allows any Subscriber to escalate to Administrator through a loose comparison flaw in the REST API secret validation.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Brief Summary: CVE-2026-6555 Unauthenticated Arbitrary File Upload in ProSolution WP Client Leading to Remote Code Execution
CVE Analysis

2026-05-19

6 min read

Brief Summary: CVE-2026-6555 Unauthenticated Arbitrary File Upload in ProSolution WP Client Leading to Remote Code Execution

A short review of CVE-2026-6555, a critical CVSS 9.8 arbitrary file upload vulnerability in the ProSolution WP Client WordPress plugin that allows unauthenticated attackers to bypass file validation and achieve remote code execution through an array validation mismatch.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Detect & fix
what others miss

Works with
  • GitHub
  • GitLab
  • Bitbucket
  • Azure DevOps Services
  • Jira
  • Linear
  • Slack
  • Security Compass
Security magnifying glass visualization
CVE Analysis | ZeroPath Security Blog - Vulnerability Research & Exploits | Page 13 | ZeroPath