ZeroPath at Black Hat USA 2026

ZeroPath Blog & Research

Explore our team's latest research and stay up to date with ZeroPath's capabilities.
CVE-2025-25270: Critical Unauthenticated RCE via Dynamic Configuration Manipulation
CVE Analysis

2025-07-07

5 min read

CVE-2025-25270: Critical Unauthenticated RCE via Dynamic Configuration Manipulation

CVE-2025-25270 is a critical vulnerability allowing unauthenticated attackers to achieve remote code execution as root by manipulating device configurations under specific conditions.

ZeroPath Security Research

ZeroPath Security Research

SAP NetWeaver Under Siege: Analyzing the Critical Deserialization Flaw CVE-2025-42980
CVE Analysis

2025-07-07

6 min read

SAP NetWeaver Under Siege: Analyzing the Critical Deserialization Flaw CVE-2025-42980

A critical deserialization vulnerability in SAP NetWeaver Enterprise Portal (CVE-2025-42980) exposes systems to severe compromise. Here's what security teams need to know.

ZeroPath Security Research

ZeroPath Security Research

SAP S/4HANA and SCM Under Siege: Critical RCE Vulnerability CVE-2025-42967 Explained
CVE Analysis

2025-07-07

7 min read

SAP S/4HANA and SCM Under Siege: Critical RCE Vulnerability CVE-2025-42967 Explained

A critical remote code execution vulnerability (CVE-2025-42967) in SAP S/4HANA and SCM Characteristic Propagation allows high-privileged attackers to gain full system control.

ZeroPath Security Research

ZeroPath Security Research

SAP NetWeaver Deserialization Flaw (CVE-2025-42964): Critical Risks and Immediate Actions
CVE Analysis

2025-07-07

7 min read

SAP NetWeaver Deserialization Flaw (CVE-2025-42964): Critical Risks and Immediate Actions

A critical deserialization vulnerability in SAP NetWeaver Enterprise Portal Administration (CVE-2025-42964) poses severe risks to confidentiality, integrity, and availability. Immediate patching is essential.

ZeroPath Security Research

ZeroPath Security Research

SAP NetWeaver Java Log Viewer Hit by Critical Deserialization Flaw (CVE-2025-42963)
CVE Analysis

2025-07-07

6 min read

SAP NetWeaver Java Log Viewer Hit by Critical Deserialization Flaw (CVE-2025-42963)

A critical Java deserialization vulnerability (CVE-2025-42963) in SAP NetWeaver Application Server's Log Viewer allows attackers full system compromise.

ZeroPath Security Research

ZeroPath Security Research

HMAC Replay Attack Unveiled: CVE-2025-42959 Threatens Patched Systems
CVE Analysis

2025-07-07

5 min read

HMAC Replay Attack Unveiled: CVE-2025-42959 Threatens Patched Systems

CVE-2025-42959 exposes a critical flaw allowing attackers to reuse HMAC credentials from unpatched systems, compromising even fully patched environments.

ZeroPath Security Research

ZeroPath Security Research

MongoDB Mongos Freeze: Unpacking CVE-2025-6714's Load Balancer DoS Vulnerability
CVE Analysis

2025-07-07

6 min read

MongoDB Mongos Freeze: Unpacking CVE-2025-6714's Load Balancer DoS Vulnerability

A critical DoS vulnerability (CVE-2025-6714) in MongoDB's mongos component can freeze new connections when configured with load balancers. Learn the technical details and mitigation steps.

ZeroPath Security Research

ZeroPath Security Research

MongoDB CVE-2025-6713: Unauthorized Data Access via $mergeCursors Exploit Explained
CVE Analysis

2025-07-07

6 min read

MongoDB CVE-2025-6713: Unauthorized Data Access via $mergeCursors Exploit Explained

A critical vulnerability in MongoDB's aggregation pipeline ($mergeCursors stage) enables unauthorized data access, impacting MongoDB Server versions prior to 8.0.7, 7.0.20, and 6.0.22.

ZeroPath Security Research

ZeroPath Security Research

GStreamer H.266 Codec Exploit Unveiled: Analyzing CVE-2025-6663's Stack-Based Buffer Overflow
CVE Analysis

2025-07-07

8 min read

GStreamer H.266 Codec Exploit Unveiled: Analyzing CVE-2025-6663's Stack-Based Buffer Overflow

A critical stack-based buffer overflow in GStreamer's H.266 codec parser (CVE-2025-6663) could lead to remote code execution. Here's what you need to know.

ZeroPath Security Research

ZeroPath Security Research

CVE-2025-41672: Critical JWT Token Forgery via Default Certificates Exposes Devices to Complete Takeover
CVE Analysis

2025-07-06

5 min read

CVE-2025-41672: Critical JWT Token Forgery via Default Certificates Exposes Devices to Complete Takeover

CVE-2025-41672 allows attackers to exploit default certificates to forge JWT tokens, granting full unauthorized access to affected systems and connected devices.

ZeroPath Security Research

ZeroPath Security Research

Mbed TLS Race Condition Vulnerability (CVE-2025-52496): AES Key Disclosure Risk
CVE Analysis

2025-07-04

6 min read

Mbed TLS Race Condition Vulnerability (CVE-2025-52496): AES Key Disclosure Risk

A race condition in Mbed TLS versions ≤3.6.3 could expose AES keys and enable GCM forgeries through cache-timing attacks.

ZeroPath Security Research

ZeroPath Security Research

Next.js Cache Poisoning Vulnerability (CVE-2025-49826): How a Simple 204 Response Could Take Down Your Site
CVE Analysis

2025-07-03

7 min read

Next.js Cache Poisoning Vulnerability (CVE-2025-49826): How a Simple 204 Response Could Take Down Your Site

Explore the technical details behind CVE-2025-49826, a cache poisoning vulnerability in Next.js that can lead to widespread Denial of Service through improper caching of HTTP 204 responses.

ZeroPath Security Research

ZeroPath Security Research

Microsoft Edge Under Attack: Unpacking CVE-2025-49713's Type Confusion Exploit
CVE Analysis

2025-07-02

6 min read

Microsoft Edge Under Attack: Unpacking CVE-2025-49713's Type Confusion Exploit

A critical type confusion vulnerability (CVE-2025-49713) in Microsoft Edge's V8 JavaScript engine is actively exploited, enabling remote attackers to execute arbitrary code. Immediate patching is essential.

ZeroPath Security Research

ZeroPath Security Research

Cisco Unified CM Exposed: Critical Static Root Credential Flaw (CVE-2025-20309)
CVE Analysis

2025-07-02

7 min read

Cisco Unified CM Exposed: Critical Static Root Credential Flaw (CVE-2025-20309)

A critical vulnerability (CVE-2025-20309) in Cisco Unified Communications Manager allows unauthenticated attackers root access via static, unchangeable credentials.

ZeroPath Security Research

ZeroPath Security Research

Drag and Drop Disaster: Analyzing CVE-2025-5746 Arbitrary File Upload Vulnerability
CVE Analysis

2025-07-01

8 min read

Drag and Drop Disaster: Analyzing CVE-2025-5746 Arbitrary File Upload Vulnerability

A critical vulnerability in the Drag and Drop Multiple File Upload plugin for WooCommerce (CVE-2025-5746) allows unauthenticated attackers to upload arbitrary files, potentially leading to remote code execution.

ZeroPath Security Research

ZeroPath Security Research

Ads Pro Plugin Under Siege: CVE-2025-4689 Chains SQLi and LFI for Critical RCE
CVE Analysis

2025-07-01

6 min read

Ads Pro Plugin Under Siege: CVE-2025-4689 Chains SQLi and LFI for Critical RCE

Critical vulnerability CVE-2025-4689 in Ads Pro Plugin chains SQL Injection and Local File Inclusion, enabling unauthenticated remote code execution on WordPress sites.

ZeroPath Security Research

ZeroPath Security Research

Microsoft Edge CVE-2025-49741: Critical Information Disclosure via Middleware Bypass
CVE Analysis

2025-07-01

6 min read

Microsoft Edge CVE-2025-49741: Critical Information Disclosure via Middleware Bypass

An in-depth analysis of CVE-2025-49741, a critical middleware bypass vulnerability in Microsoft Edge allowing unauthorized information disclosure.

ZeroPath Security Research

ZeroPath Security Research

Node-RED Under Siege: Unauthenticated Remote Command Execution (CVE-2025-41656)
CVE Analysis

2025-07-01

8 min read

Node-RED Under Siege: Unauthenticated Remote Command Execution (CVE-2025-41656)

CVE-2025-41656 exposes Node-RED installations to critical unauthenticated remote command execution, posing severe risks to industrial and IoT environments.

ZeroPath Security Research

ZeroPath Security Research

Ansible Automation Platform's EDA Hit by Critical Jinja2 Template Injection (CVE-2025-49521)
CVE Analysis

2025-06-30

6 min read

Ansible Automation Platform's EDA Hit by Critical Jinja2 Template Injection (CVE-2025-49521)

A critical Jinja2 template injection vulnerability (CVE-2025-49521) in Ansible Automation Platform's EDA component allows authenticated attackers to execute commands and steal OpenShift service account tokens.

ZeroPath Security Research

ZeroPath Security Research

Ansible Automation Platform Hit by Critical Command Injection Flaw (CVE-2025-49520)
CVE Analysis

2025-06-30

6 min read

Ansible Automation Platform Hit by Critical Command Injection Flaw (CVE-2025-49520)

A critical command injection vulnerability (CVE-2025-49520) in Ansible Automation Platform's EDA component exposes Kubernetes clusters to potential compromise.

ZeroPath Security Research

ZeroPath Security Research

Detect & fix
what others miss

Works with
  • GitHub
  • GitLab
  • Bitbucket
  • Azure DevOps Services
  • Jira
  • Linear
  • Slack
  • Security Compass
Security magnifying glass visualization
CVE Analysis | ZeroPath Security Blog - Vulnerability Research & Exploits | Page 63 | ZeroPath