ZeroPath at Black Hat USA 2026

ZeroPath Blog & Research

Explore our team's latest research and stay up to date with ZeroPath's capabilities.
Poppler CVE-2026-10118: Quick Look at the Integer Overflow in tilingPatternFill Leading to Heap Corruption
CVE Analysis

2026-06-01

8 min read

Poppler CVE-2026-10118: Quick Look at the Integer Overflow in tilingPatternFill Leading to Heap Corruption

A brief summary of CVE-2026-10118, a high severity integer overflow in Poppler's Splash backend that enables remote code execution via crafted PDF files, affecting major Linux PDF viewers and command line utilities.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Quick Look: CVE-2026-24088 — Qualcomm Boot Partition Cryptographic Bypass Enables Unauthorized Bootloader Loading
CVE Analysis

2026-06-01

10 min read

Quick Look: CVE-2026-24088 — Qualcomm Boot Partition Cryptographic Bypass Enables Unauthorized Bootloader Loading

A brief summary of CVE-2026-24088, a CVSS 8.2 cryptographic authentication bypass in Qualcomm's boot partition processing that allows unauthorized write access to load a customized bootloader across a wide range of Snapdragon chipsets.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Qualcomm CVE-2026-24090: Brief Summary of a Boot Flow Cryptographic Bypass Affecting Dozens of Snapdragon Chipsets
CVE Analysis

2026-06-01

10 min read

Qualcomm CVE-2026-24090: Brief Summary of a Boot Flow Cryptographic Bypass Affecting Dozens of Snapdragon Chipsets

A brief summary of CVE-2026-24090, a high severity cryptographic authentication bypass in Qualcomm's Application Bootloader that allows local attackers to modify the boot flow on a wide range of Snapdragon chipsets.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Quick Look: CVE-2026-25276, Qualcomm StrongBox Bounds Check Bypass Threatens Hardware Root of Trust
CVE Analysis

2026-06-01

12 min read

Quick Look: CVE-2026-25276, Qualcomm StrongBox Bounds Check Bypass Threatens Hardware Root of Trust

A brief summary of CVE-2026-25276, a critical memory corruption vulnerability in Qualcomm's StrongBox Secure Processor caused by a missing array index bounds check. Patch information and affected chipset details are included.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Quick Look: CVE-2026-25277 — Qualcomm Secure Processor StrongBox Buffer Overflow Threatens Hardware Backed Key Storage
CVE Analysis

2026-06-01

10 min read

Quick Look: CVE-2026-25277 — Qualcomm Secure Processor StrongBox Buffer Overflow Threatens Hardware Backed Key Storage

A brief summary of CVE-2026-25277, a critical buffer overflow in Qualcomm's Secure Processor StrongBox subsystem affecting 50+ chipsets. Includes patch details, affected platforms, and threat intelligence context.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Cloud Foundry UAA CVE-2026-40965: EC Private Key Disclosure via Public Endpoint — Brief Summary and Patch Analysis
CVE Analysis

2026-06-01

10 min read

Cloud Foundry UAA CVE-2026-40965: EC Private Key Disclosure via Public Endpoint — Brief Summary and Patch Analysis

A brief summary of CVE-2026-40965, a CVSS 10.0 vulnerability in Cloud Foundry UAA that exposes EC private signing keys through the public /token_keys endpoint, along with patch details and remediation guidance.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Apache Solr CVE-2026-44825: Quick Look at Hardcoded Credentials in BasicAuth Bootstrapping
CVE Analysis

2026-06-01

10 min read

Apache Solr CVE-2026-44825: Quick Look at Hardcoded Credentials in BasicAuth Bootstrapping

A brief summary of CVE-2026-44825, a high severity hardcoded credentials vulnerability in Apache Solr's BasicAuth setup tool that silently installs four template admin accounts with publicly known default passwords across affected clusters.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Nextcloud User OIDC CVE-2026-45156: Authentication Bypass via Missing JWT Signature Verification in ID4me Flow
CVE Analysis

2026-06-01

10 min read

Nextcloud User OIDC CVE-2026-45156: Authentication Bypass via Missing JWT Signature Verification in ID4me Flow

A brief summary of CVE-2026-45156, a high severity authentication bypass in Nextcloud's User OIDC app where missing JWT signature verification in the ID4me login flow allowed a malicious identity authority to impersonate any user. Includes patch analysis and affected version details.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Microsoft SharePoint CVE-2026-47294: Brief Summary of a Deserialization to OS Command Injection RCE
CVE Analysis

2026-06-01

10 min read

Microsoft SharePoint CVE-2026-47294: Brief Summary of a Deserialization to OS Command Injection RCE

A brief summary of CVE-2026-47294, a high severity deserialization vulnerability in Microsoft SharePoint Server that enables OS command injection and remote code execution, affecting SharePoint 2016, 2019, and Subscription Edition.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Gravity Forms CVE-2026-48866: Brief Summary of a Critical Arbitrary File Deletion via Path Traversal
CVE Analysis

2026-06-01

8 min read

Gravity Forms CVE-2026-48866: Brief Summary of a Critical Arbitrary File Deletion via Path Traversal

A brief summary of CVE-2026-48866, a critical path traversal vulnerability in the Gravity Forms WordPress plugin that enables arbitrary file deletion on affected servers. The flaw affects all versions through 2.10.0.1 and carries a CVSS score of 9.6.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Kirki WordPress Plugin CVE-2026-8206: Brief Summary of a Critical Unauthenticated Privilege Escalation via Password Reset Hijacking
CVE Analysis

2026-06-01

12 min read

Kirki WordPress Plugin CVE-2026-8206: Brief Summary of a Critical Unauthenticated Privilege Escalation via Password Reset Hijacking

A short review of CVE-2026-8206, a CVSS 9.8 unauthenticated privilege escalation in the Kirki WordPress plugin (versions 6.0.0 through 6.0.6) that allows attackers to redirect password reset emails to arbitrary addresses. Includes patch analysis, detection methods, and threat intelligence context.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

IBM WebSphere Application Server CVE-2026-8644: Critical Identity Spoofing via Improper Signature Validation — Quick Look
CVE Analysis

2026-06-01

10 min read

IBM WebSphere Application Server CVE-2026-8644: Critical Identity Spoofing via Improper Signature Validation — Quick Look

A brief summary of CVE-2026-8644, a critical (CVSS 9.1) identity spoofing vulnerability in IBM WebSphere Application Server traditional 8.5 and 9.0 that allows unauthenticated remote attackers to bypass authentication through improper signature validation, with no workarounds available.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

IBM WebSphere Application Server CVE-2026-9311: Brief Summary of a Critical RCE via Security Control Bypass
CVE Analysis

2026-06-01

10 min read

IBM WebSphere Application Server CVE-2026-9311: Brief Summary of a Critical RCE via Security Control Bypass

A brief summary of CVE-2026-9311, a CVSS 9.0 remote code execution vulnerability in IBM WebSphere Application Server 8.5 and 9.0 caused by a code injection flaw that bypasses existing security controls. No workarounds are available; patching is the only remediation path.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

IBM WebSphere Application Server CVE-2026-9319: Brief Summary of Critical RCE via JAX-WS Deserialization
CVE Analysis

2026-06-01

8 min read

IBM WebSphere Application Server CVE-2026-9319: Brief Summary of Critical RCE via JAX-WS Deserialization

A brief summary of CVE-2026-9319, a critical CVSS 9.0 remote code execution vulnerability in IBM WebSphere Application Server caused by insecure deserialization of untrusted data via JAX-WS endpoints configured with WS-Security. Affected versions span both the 8.5 and 9.0 release streams, and no workarounds are available.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

IBM WebSphere Application Server CVE-2026-9330: SAML SSO Deserialization Leading to Remote Code Execution
CVE Analysis

2026-06-01

10 min read

IBM WebSphere Application Server CVE-2026-9330: SAML SSO Deserialization Leading to Remote Code Execution

A brief summary of CVE-2026-9330, a high severity deserialization vulnerability in IBM WebSphere Application Server's SAML Web SSO component that enables remote code execution via crafted HTTP requests when combined with a suitable gadget chain.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Quick Look: CVE-2026-9614 Privilege Escalation in Ivanti Neurons for ITSM
CVE Analysis

2026-06-01

10 min read

Quick Look: CVE-2026-9614 Privilege Escalation in Ivanti Neurons for ITSM

A brief summary of CVE-2026-9614, a high severity improper access control flaw in Ivanti Neurons for ITSM that allows any authenticated user to escalate to full administrator. Includes patch information for both cloud and on premises deployments.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

OTRS CVE-2026-48188: Critical Unauthenticated SQL Injection Enables Authentication Bypass Across a Decade of Releases
CVE Analysis

2026-05-31

10 min read

OTRS CVE-2026-48188: Critical Unauthenticated SQL Injection Enables Authentication Bypass Across a Decade of Releases

A brief summary of CVE-2026-48188, a critical unauthenticated SQL injection in the OTRS database layer module that leads to authentication bypass when MySQL or MariaDB is configured with NO_BACKSLASH_ESCAPES, affecting seven major release lines spanning nearly a decade.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Spectra Gutenberg Blocks CVE-2026-7465: Brief Summary of a Contributor-Level RCE via Block Callback Injection
CVE Analysis

2026-05-30

10 min read

Spectra Gutenberg Blocks CVE-2026-7465: Brief Summary of a Contributor-Level RCE via Block Callback Injection

A short review of CVE-2026-7465, a CVSS 8.8 Remote Code Execution vulnerability in the Spectra Gutenberg Blocks WordPress plugin affecting 1M+ sites. Covers the two-block exploitation mechanism, the one-line patch in version 2.19.26, and the vendor's recurring security issues.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Brief Summary: CVE-2026-3655 Firebase OTP Authentication Bypass in WordPress OTP Login Plugin
CVE Analysis

2026-05-29

10 min read

Brief Summary: CVE-2026-3655 Firebase OTP Authentication Bypass in WordPress OTP Login Plugin

A short review of CVE-2026-3655, a critical CVSS 9.8 authentication bypass in the WordPress OTP Login With Phone Number plugin that allows unauthenticated attackers to log in as any user, including administrators, by exploiting a missing identity binding check in the Firebase OTP verification flow.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Brief Summary: CVE-2026-4290 in WP Travel Pro — Unauthenticated Admin Deletion via Broken REST API Authorization
CVE Analysis

2026-05-29

10 min read

Brief Summary: CVE-2026-4290 in WP Travel Pro — Unauthenticated Admin Deletion via Broken REST API Authorization

A short review of CVE-2026-4290, a critical missing authorization flaw in the WP Travel Pro WordPress plugin that allows unauthenticated attackers to delete arbitrary user accounts, including administrators, through a single REST API request. No patch is currently available.

ZeroPath CVE Analysis

ZeroPath CVE Analysis

Detect & fix
what others miss

Works with
  • GitHub
  • GitLab
  • Bitbucket
  • Azure DevOps Services
  • Jira
  • Linear
  • Slack
  • Security Compass
Security magnifying glass visualization
CVE Analysis | ZeroPath Security Blog - Vulnerability Research & Exploits | Page 8 | ZeroPath