ZeroPath Blog & Research
Explore our team's latest research and stay up to date with ZeroPath's capabilities.
CVE Analysis
•2026-04-24
•10 min read
OVN CVE-2026-5367: Brief Summary of a DHCPv6 Heap Over-Read That Leaks Host Memory to Tenant VMs
A brief summary of CVE-2026-5367, a high severity out-of-bounds read in OVN's DHCPv6 handler that allows remote attackers to leak heap memory from ovn-controller back to a VM port. Includes patch details, detection methods, and affected version information.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-24
•5 min read
Brief Summary: CVE-2026-6911 — Critical JWT Signature Bypass in AWS Ops Wheel Enables Full Administrative Takeover
A short review of CVE-2026-6911, a critical authentication bypass in AWS Ops Wheel caused by missing JWT signature verification, allowing unauthenticated attackers to forge tokens and gain full administrative access across tenants.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-24
•6 min read
Quick Look: CVE-2026-6912 Privilege Escalation via Self-Writable Cognito Attribute in AWS Ops Wheel
A brief summary of CVE-2026-6912, a high severity privilege escalation in AWS Ops Wheel v2 where authenticated users can self-assign deployment admin privileges through an unrestricted Cognito custom attribute.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-24
•7 min read
Brief Summary: CVE-2026-6951 — simple-git RCE via --config Flag Bypass
A short review of CVE-2026-6951, a critical RCE in the simple-git npm package caused by an incomplete fix for CVE-2022-25912. Includes patch analysis and affected version details.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•5 min read
Brief Summary: CVE-2026-24303 — Critical Elevation of Privilege in Microsoft Partner Center
A short review of CVE-2026-24303, a critical improper access control vulnerability in Microsoft Partner Center that allowed an authorized attacker to elevate privileges over a network. Microsoft has fully mitigated the issue server side, requiring no customer action.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•5 min read
Microsoft Purview eDiscovery CVE-2026-26150: Brief Summary of a High Severity SSRF Vulnerability
A brief summary of CVE-2026-26150, a server side request forgery vulnerability in Microsoft Purview eDiscovery with a CVSS 3.1 score of 8.6 that could allow unauthorized privilege escalation and data exposure across Microsoft 365 services. Microsoft has already fully mitigated the issue.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•5 min read
Brief Summary: Microsoft Power Apps CVE-2026-32172 Uncontrolled Search Path Leading to Remote Code Execution
A short review of CVE-2026-32172, a high severity uncontrolled search path vulnerability in Microsoft Power Apps that could allow unauthenticated remote code execution. Microsoft has already applied a server side fix, and no customer action is required.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•8 min read
CVE-2026-32210: Critical SSRF and Token Bypass in Microsoft Dynamics 365 Online — PoC and Patch Analysis
A brief summary of CVE-2026-32210, a critical SSRF vulnerability in Microsoft Dynamics 365 Online that allowed token theft and Power Platform access via a crafted link. Includes published proof of concept details and patch status.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•6 min read
Brief Summary: CVE-2026-33102 — Critical Open Redirect in Microsoft 365 Copilot Enables Privilege Escalation
A short review of CVE-2026-33102, a critical open redirect vulnerability in Microsoft 365 Copilot (CVSS 9.3) that could allow an unauthorized attacker to elevate privileges over a network. Microsoft has already applied a server-side fix; no customer action is required.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•5 min read
Brief Summary: CVE-2026-33819, Critical Deserialization RCE in Microsoft Bing (CVSS 10.0)
A short review of CVE-2026-33819, a maximum severity deserialization vulnerability in Microsoft Bing that enables unauthenticated remote code execution. Microsoft has confirmed the issue is fully mitigated on their hosted infrastructure with no customer action required.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•6 min read
Brief Summary: CVE-2026-35431, Critical SSRF in Microsoft Entra ID Entitlement Management (CVSS 10.0)
A short review of CVE-2026-35431, a critical SSRF vulnerability in Microsoft Entra ID Entitlement Management scored at CVSS 10.0. Microsoft has already applied a server side fix with no customer action required, and patch details are included.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•6 min read
Argo Workflows CVE-2026-40886: Brief Summary of a Controller Crash Loop via Malformed Annotation Parsing
A brief summary of CVE-2026-40886, a high severity denial of service vulnerability in Argo Workflows where a malformed pod annotation triggers an unchecked array index panic, crash looping the controller and halting all workflow processing cluster wide.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•10 min read
Kyverno CVE-2026-41068: Cross-Namespace RBAC Bypass via ConfigMap Context Loader — Quick Look with PoC and Patch Analysis
A brief summary of CVE-2026-41068, a high-severity RBAC bypass in Kyverno's ConfigMap context loader that allows namespace admins to read ConfigMaps from any namespace in multi-tenant Kubernetes clusters. Includes public PoC details and patch analysis.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•7 min read
Brief Summary: Contour Kubernetes Ingress Controller CVE-2026-41246 Lua Code Injection via Cookie Rewriting
A brief summary of CVE-2026-41246, a high severity Lua code injection vulnerability in the Contour Kubernetes ingress controller's Cookie Rewriting feature that enables arbitrary code execution in shared Envoy proxy instances.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•10 min read
Ruby ERB CVE-2026-41316: Deserialization Guard Bypass Enables Remote Code Execution via def_module — Technical Breakdown with PoC and Patch Analysis
A brief summary of CVE-2026-41316, a high severity deserialization guard bypass in Ruby's ERB templating library that allows remote code execution through Marshal.load when combined with ActiveSupport. Includes proof of concept details and patch analysis.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•6 min read
Brief Summary: Kyverno CVE-2026-41323 ServiceAccount Token Leak via apiCall Leading to Cluster Compromise
A brief summary of CVE-2026-41323, a high severity vulnerability in Kyverno's apiCall feature that leaks the admission controller's ServiceAccount token to arbitrary endpoints, enabling full Kubernetes cluster compromise.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•6 min read
ExactMetrics WordPress Plugin CVE-2026-5464: Overview of Chained Authorization Bypass Leading to Remote Code Execution
A brief summary of CVE-2026-5464, a high severity authorization bypass in the ExactMetrics WordPress plugin that chains three weak endpoints to allow authenticated attackers to install arbitrary plugins and achieve remote code execution.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-23
•7 min read
ByteDance verl CVE-2026-6878: Unsafe eval() in ML Training Pipeline Enables Remote Code Execution via Indirect Prompt Injection — Quick Look with Public PoC
A brief summary of CVE-2026-6878, an unsafe eval() vulnerability in ByteDance's verl reinforcement learning framework that allows remote code execution through indirect prompt injection of training data. A public PoC exploit is available.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-22
•5 min read
ThinkPHP 5.0.23 CVE-2018-25270: Brief Summary of a Critical Unauthenticated RCE via invokeFunction Routing
A brief summary of CVE-2018-25270, a critical unauthenticated remote code execution vulnerability in ThinkPHP 5.0.23 that allows attackers to invoke arbitrary PHP functions through the framework's routing parameter. The flaw carries a CVSS score of 9.8 and has been actively exploited in the wild since 2018, with campaigns continuing into 2024.
ZeroPath CVE Analysis
CVE Analysis
•2026-04-22
•6 min read
Brief Summary: Dell PowerProtect Data Domain CVE-2026-26354 Stack Based Buffer Overflow Enabling Unauthenticated Remote Command Execution
A short review of CVE-2026-26354, a stack based buffer overflow in Dell PowerProtect Data Domain OS that allows unauthenticated remote attackers to execute arbitrary commands on affected backup appliances.
ZeroPath CVE Analysis
Detect & fix
what others miss
