ZeroPath at Black Hat USA 2026

ZeroPath Blog & Research

Explore our team's latest research and stay up to date with ZeroPath's capabilities.
CVE-2025-49660: Windows Event Tracing Use-After-Free Opens Door to Privilege Escalation
CVE Analysis

2025-07-08

7 min read

CVE-2025-49660: Windows Event Tracing Use-After-Free Opens Door to Privilege Escalation

A critical use-after-free vulnerability in Windows Event Tracing (CVE-2025-49660) enables local attackers to escalate privileges to SYSTEM level. Immediate patching recommended.

ZeroPath Security Research

ZeroPath Security Research

Windows TDX.sys Privilege Escalation Flaw (CVE-2025-49659): Inside the Kernel's Buffer Over-read
CVE Analysis

2025-07-08

6 min read

Windows TDX.sys Privilege Escalation Flaw (CVE-2025-49659): Inside the Kernel's Buffer Over-read

A critical buffer over-read vulnerability in Windows TDX.sys (CVE-2025-49659) allows local attackers to escalate privileges. Immediate patching advised.

ZeroPath Security Research

ZeroPath Security Research

Critical Heap-Based Buffer Overflow in Windows RRAS: Analyzing CVE-2025-49657
CVE Analysis

2025-07-08

8 min read

Critical Heap-Based Buffer Overflow in Windows RRAS: Analyzing CVE-2025-49657

An in-depth analysis of CVE-2025-49657, a critical heap-based buffer overflow vulnerability in Windows Routing and Remote Access Service (RRAS), enabling remote code execution without authentication.

ZeroPath Security Research

ZeroPath Security Research

Windows RRAS Under Siege: Unpacking CVE-2025-48824's Heap-Based Buffer Overflow
CVE Analysis

2025-07-08

7 min read

Windows RRAS Under Siege: Unpacking CVE-2025-48824's Heap-Based Buffer Overflow

An in-depth technical analysis of CVE-2025-48824, a critical heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allowing remote code execution.

ZeroPath Security Research

ZeroPath Security Research

Windows Hyper-V DDA Flaw CVE-2025-48822: Critical Out-of-Bounds Read Enables Local Code Execution
CVE Analysis

2025-07-08

7 min read

Windows Hyper-V DDA Flaw CVE-2025-48822: Critical Out-of-Bounds Read Enables Local Code Execution

A critical out-of-bounds read vulnerability (CVE-2025-48822) in Windows Hyper-V's Discrete Device Assignment (DDA) allows local attackers to execute arbitrary code, necessitating immediate patching.

ZeroPath Security Research

ZeroPath Security Research

Windows UPnP Device Host Flaw (CVE-2025-48821): Privilege Escalation Risk on Adjacent Networks
CVE Analysis

2025-07-08

6 min read

Windows UPnP Device Host Flaw (CVE-2025-48821): Privilege Escalation Risk on Adjacent Networks

A detailed analysis of CVE-2025-48821, a use-after-free vulnerability in Windows UPnP Device Host allowing privilege escalation over adjacent networks.

ZeroPath Security Research

ZeroPath Security Research

Windows AppX Deployment Service Vulnerability (CVE-2025-48820): Privilege Escalation via Improper Link Resolution
CVE Analysis

2025-07-08

7 min read

Windows AppX Deployment Service Vulnerability (CVE-2025-48820): Privilege Escalation via Improper Link Resolution

An in-depth technical analysis of CVE-2025-48820, a privilege escalation vulnerability in Windows AppX Deployment Service due to improper link resolution.

ZeroPath Security Research

ZeroPath Security Research

Windows UPnP Service Exposed: Privilege Escalation Risk in CVE-2025-48819
CVE Analysis

2025-07-08

8 min read

Windows UPnP Service Exposed: Privilege Escalation Risk in CVE-2025-48819

CVE-2025-48819 exposes sensitive data in improperly locked memory within Windows UPnP Device Host, enabling privilege escalation over adjacent networks. Immediate patching is critical.

ZeroPath Security Research

ZeroPath Security Research

Navigating Danger: CVE-2025-48817 Path Traversal in Windows Remote Desktop Client
CVE Analysis

2025-07-08

7 min read

Navigating Danger: CVE-2025-48817 Path Traversal in Windows Remote Desktop Client

An in-depth analysis of CVE-2025-48817, a critical path traversal vulnerability in Microsoft's Remote Desktop Client, enabling remote code execution.

ZeroPath Security Research

ZeroPath Security Research

Windows HID Driver Integer Overflow (CVE-2025-48816): Local Privilege Escalation Alert
CVE Analysis

2025-07-08

5 min read

Windows HID Driver Integer Overflow (CVE-2025-48816): Local Privilege Escalation Alert

An integer overflow vulnerability in Windows HID Class Driver (CVE-2025-48816) allows local attackers to escalate privileges to SYSTEM-level. Immediate patching advised.

ZeroPath Security Research

ZeroPath Security Research

Windows SSDP Service Type Confusion Flaw (CVE-2025-48815): Privilege Escalation Risk Explained
CVE Analysis

2025-07-08

6 min read

Windows SSDP Service Type Confusion Flaw (CVE-2025-48815): Privilege Escalation Risk Explained

A detailed exploration of CVE-2025-48815, a high-severity type confusion vulnerability in Windows SSDP Service, enabling local privilege escalation.

ZeroPath Security Research

ZeroPath Security Research

Windows Remote Desktop Licensing Service Exposed: Analyzing CVE-2025-48814 Security Feature Bypass
CVE Analysis

2025-07-08

8 min read

Windows Remote Desktop Licensing Service Exposed: Analyzing CVE-2025-48814 Security Feature Bypass

An in-depth technical analysis of CVE-2025-48814, a critical security feature bypass vulnerability in Windows Remote Desktop Licensing Service, detailing its exploitation methods and essential patching guidance.

ZeroPath Security Research

ZeroPath Security Research

Microsoft MPEG-2 Video Extension Hit by Critical Use-After-Free Flaw (CVE-2025-48806)
CVE Analysis

2025-07-08

7 min read

Microsoft MPEG-2 Video Extension Hit by Critical Use-After-Free Flaw (CVE-2025-48806)

A critical use-after-free vulnerability in Microsoft's MPEG-2 Video Extension (CVE-2025-48806) could allow attackers to execute arbitrary code via malicious video files.

ZeroPath Security Research

ZeroPath Security Research

Heap Trouble: Analyzing CVE-2025-48805 in Microsoft's MPEG-2 Video Extension
CVE Analysis

2025-07-08

7 min read

Heap Trouble: Analyzing CVE-2025-48805 in Microsoft's MPEG-2 Video Extension

A detailed exploration of CVE-2025-48805, a heap-based buffer overflow in Microsoft's MPEG-2 Video Extension, highlighting technical intricacies and essential patching strategies.

ZeroPath Security Research

ZeroPath Security Research

Windows Update Service Under Siege: Analyzing CVE-2025-48799 Privilege Escalation Flaw
CVE Analysis

2025-07-08

8 min read

Windows Update Service Under Siege: Analyzing CVE-2025-48799 Privilege Escalation Flaw

Explore the technical intricacies of CVE-2025-48799, a high-severity privilege escalation vulnerability in Windows Update Service, and learn how to detect and mitigate it effectively.

ZeroPath Security Research

ZeroPath Security Research

Windows CDPSvc Under Fire: Analyzing CVE-2025-48000's Privilege Escalation Risk
CVE Analysis

2025-07-08

12 min read

Windows CDPSvc Under Fire: Analyzing CVE-2025-48000's Privilege Escalation Risk

Explore the technical intricacies of CVE-2025-48000, a critical use-after-free vulnerability in Windows Connected Devices Platform Service enabling local privilege escalation.

ZeroPath Security Research

ZeroPath Security Research

Windows RRAS Under Siege: Analyzing CVE-2025-47998 Heap-Based Buffer Overflow
CVE Analysis

2025-07-08

6 min read

Windows RRAS Under Siege: Analyzing CVE-2025-47998 Heap-Based Buffer Overflow

A critical heap-based buffer overflow in Windows RRAS (CVE-2025-47998) enables unauthenticated remote attackers to execute arbitrary code. Immediate patching is essential.

ZeroPath Security Research

ZeroPath Security Research

Windows MBT Transport Driver Integer Underflow (CVE-2025-47996): A Privilege Escalation Risk You Can't Ignore
CVE Analysis

2025-07-08

7 min read

Windows MBT Transport Driver Integer Underflow (CVE-2025-47996): A Privilege Escalation Risk You Can't Ignore

Explore the critical integer underflow vulnerability in Windows MBT Transport Driver (CVE-2025-47996), enabling local attackers to escalate privileges. Learn technical details, affected versions, and essential patching steps.

ZeroPath Security Research

ZeroPath Security Research

Microsoft Office's Silent Threat: Unpacking CVE-2025-47994 Deserialization Vulnerability
CVE Analysis

2025-07-08

8 min read

Microsoft Office's Silent Threat: Unpacking CVE-2025-47994 Deserialization Vulnerability

Explore the critical deserialization vulnerability CVE-2025-47994 in Microsoft Office, enabling local privilege escalation through maliciously crafted documents.

ZeroPath Security Research

ZeroPath Security Research

Windows IME Under Siege: Analyzing CVE-2025-47991 Privilege Escalation Flaw
CVE Analysis

2025-07-08

6 min read

Windows IME Under Siege: Analyzing CVE-2025-47991 Privilege Escalation Flaw

A critical use-after-free vulnerability in Windows Input Method Editor (IME) allows local attackers to escalate privileges, demanding immediate patching.

ZeroPath Security Research

ZeroPath Security Research

Detect & fix
what others miss

Works with
  • GitHub
  • GitLab
  • Bitbucket
  • Azure DevOps Services
  • Jira
  • Linear
  • Slack
  • Security Compass
Security magnifying glass visualization
CVE Analysis | ZeroPath Security Blog - Vulnerability Research & Exploits | Page 61 | ZeroPath