ZeroPath at Black Hat USA 2026

ZeroPath Blog & Research

Explore our team's latest research and stay up to date with ZeroPath's capabilities.
Sudo's Chroot Misstep: Unpacking CVE-2025-32463 Privilege Escalation
CVE Analysis

2025-06-30

8 min read

Sudo's Chroot Misstep: Unpacking CVE-2025-32463 Privilege Escalation

A critical vulnerability in sudo (CVE-2025-32463) allows local attackers to escalate privileges to root via the chroot option. Here's what you need to know.

ZeroPath Security Research

ZeroPath Security Research

Windows AFD.sys Zero-Day CVE-2025-32709: Exploiting Use-After-Free for SYSTEM Privileges
CVE Analysis

2025-05-13

7 min read

Windows AFD.sys Zero-Day CVE-2025-32709: Exploiting Use-After-Free for SYSTEM Privileges

An in-depth technical analysis of CVE-2025-32709, a use-after-free vulnerability in Windows Ancillary Function Driver for WinSock, actively exploited to escalate privileges to SYSTEM level.

ZeroPath Security Research

ZeroPath Security Research

Windows NTFS Under Siege: Unpacking CVE-2025-32707 Privilege Escalation
CVE Analysis

2025-05-13

6 min read

Windows NTFS Under Siege: Unpacking CVE-2025-32707 Privilege Escalation

A critical out-of-bounds read vulnerability in Windows NTFS (CVE-2025-32707) allows attackers to escalate privileges to SYSTEM level, actively exploited in the wild.

ZeroPath Security Research

ZeroPath Security Research

Windows CLFS Driver Strikes Again: Privilege Escalation via CVE-2025-32706
CVE Analysis

2025-05-13

6 min read

Windows CLFS Driver Strikes Again: Privilege Escalation via CVE-2025-32706

CVE-2025-32706 exposes Windows systems to local privilege escalation, allowing attackers to gain SYSTEM-level control through improper input validation in the CLFS driver.

ZeroPath Security Research

ZeroPath Security Research

Microsoft Outlook Under Fire: Analyzing CVE-2025-32705's Out-of-Bounds Read Vulnerability
CVE Analysis

2025-05-13

5 min read

Microsoft Outlook Under Fire: Analyzing CVE-2025-32705's Out-of-Bounds Read Vulnerability

A detailed technical analysis of CVE-2025-32705, an out-of-bounds read vulnerability in Microsoft Outlook allowing local attackers to execute arbitrary code.

ZeroPath Security Research

ZeroPath Security Research

Excel Under Siege: Dissecting CVE-2025-32704's Buffer Over-Read Vulnerability
CVE Analysis

2025-05-13

6 min read

Excel Under Siege: Dissecting CVE-2025-32704's Buffer Over-Read Vulnerability

An in-depth technical analysis of CVE-2025-32704, a critical buffer over-read vulnerability in Microsoft Excel, detailing exploitation methods, affected versions, and essential patching steps.

ZeroPath Security Research

ZeroPath Security Research

Visual Studio Under Siege: Command Injection Vulnerability CVE-2025-32702 Exposed
CVE Analysis

2025-05-13

6 min read

Visual Studio Under Siege: Command Injection Vulnerability CVE-2025-32702 Exposed

A critical command injection flaw (CVE-2025-32702) in Visual Studio exposes developers to local code execution risks. Immediate patching is advised.

ZeroPath Security Research

ZeroPath Security Research

Windows CLFS Driver Zero-Day CVE-2025-32701: Privilege Escalation in the Wild
CVE Analysis

2025-05-13

6 min read

Windows CLFS Driver Zero-Day CVE-2025-32701: Privilege Escalation in the Wild

An actively exploited use-after-free vulnerability in Windows CLFS driver (CVE-2025-32701) allows attackers to escalate privileges to SYSTEM-level. Immediate patching recommended.

ZeroPath Security Research

ZeroPath Security Research

Windows DWM Under Siege: CVE-2025-30400 Use-After-Free Exploit Grants SYSTEM Privileges
CVE Analysis

2025-05-13

7 min read

Windows DWM Under Siege: CVE-2025-30400 Use-After-Free Exploit Grants SYSTEM Privileges

An actively exploited use-after-free vulnerability in Windows DWM (CVE-2025-30400) enables attackers to escalate privileges to SYSTEM. Immediate patching is critical.

ZeroPath Security Research

ZeroPath Security Research

Type Confusion Strikes Again: Analyzing CVE-2025-30397 in Microsoft's Scripting Engine
CVE Analysis

2025-05-13

6 min read

Type Confusion Strikes Again: Analyzing CVE-2025-30397 in Microsoft's Scripting Engine

CVE-2025-30397 exposes a critical type confusion flaw in Microsoft's Scripting Engine, enabling remote attackers to execute arbitrary code via Edge's IE Mode. Immediate patching is essential.

ZeroPath Security Research

ZeroPath Security Research

Excel Under Siege: Analyzing CVE-2025-30393 Use-After-Free Vulnerability
CVE Analysis

2025-05-13

6 min read

Excel Under Siege: Analyzing CVE-2025-30393 Use-After-Free Vulnerability

A detailed analysis of CVE-2025-30393, a critical use-after-free vulnerability in Microsoft Excel, enabling local code execution and potential system compromise.

ZeroPath Security Research

ZeroPath Security Research

Windows Win32K GRFX Heap Overflow (CVE-2025-30388): A Local Privilege Escalation Threat
CVE Analysis

2025-05-13

6 min read

Windows Win32K GRFX Heap Overflow (CVE-2025-30388): A Local Privilege Escalation Threat

A detailed technical analysis of CVE-2025-30388, a heap-based buffer overflow in Windows Win32K GRFX, enabling local attackers to execute arbitrary code.

ZeroPath Security Research

ZeroPath Security Research

Azure Document Intelligence Studio Path Traversal Flaw (CVE-2025-30387): Critical Privilege Escalation Risk
CVE Analysis

2025-05-13

7 min read

Azure Document Intelligence Studio Path Traversal Flaw (CVE-2025-30387): Critical Privilege Escalation Risk

A critical path traversal vulnerability (CVE-2025-30387) in Azure Document Intelligence Studio On-Prem allows attackers to escalate privileges remotely, demanding immediate patching and mitigation.

ZeroPath Security Research

ZeroPath Security Research

Silent Threat: CVE-2025-30386 Exploits Microsoft Office Preview Pane for Remote Code Execution
CVE Analysis

2025-05-13

6 min read

Silent Threat: CVE-2025-30386 Exploits Microsoft Office Preview Pane for Remote Code Execution

CVE-2025-30386, a critical use-after-free vulnerability in Microsoft Office, allows attackers to execute code silently via the Preview Pane, posing significant risks to enterprise security.

ZeroPath Security Research

ZeroPath Security Research

Windows CLFS Driver CVE-2025-30385: A Deep Look into Use-After-Free Privilege Escalation
CVE Analysis

2025-05-13

6 min read

Windows CLFS Driver CVE-2025-30385: A Deep Look into Use-After-Free Privilege Escalation

An in-depth technical analysis of CVE-2025-30385, a use-after-free vulnerability in Windows CLFS Driver enabling local privilege escalation.

ZeroPath Security Research

ZeroPath Security Research

CVE-2025-30384: Microsoft SharePoint Deserialization Flaw Opens Door to Local RCE
CVE Analysis

2025-05-13

6 min read

CVE-2025-30384: Microsoft SharePoint Deserialization Flaw Opens Door to Local RCE

An in-depth analysis of CVE-2025-30384, a deserialization vulnerability in Microsoft SharePoint allowing local attackers to execute arbitrary code.

ZeroPath Security Research

ZeroPath Security Research

Excel's Type Confusion Trouble: Unpacking CVE-2025-30383's Local Code Execution Risk
CVE Analysis

2025-05-13

7 min read

Excel's Type Confusion Trouble: Unpacking CVE-2025-30383's Local Code Execution Risk

A detailed technical analysis of CVE-2025-30383, a critical type confusion vulnerability in Microsoft Excel enabling local code execution.

ZeroPath Security Research

ZeroPath Security Research

Microsoft SharePoint's CVE-2025-30382: Unpacking the Deserialization RCE Risk
CVE Analysis

2025-05-13

6 min read

Microsoft SharePoint's CVE-2025-30382: Unpacking the Deserialization RCE Risk

Explore the technical details behind CVE-2025-30382, a critical deserialization vulnerability in Microsoft SharePoint Server enabling remote code execution.

ZeroPath Security Research

ZeroPath Security Research

Excel Under Siege: Unpacking CVE-2025-30381's Out-of-Bounds Read Exploit
CVE Analysis

2025-05-13

6 min read

Excel Under Siege: Unpacking CVE-2025-30381's Out-of-Bounds Read Exploit

A critical out-of-bounds read vulnerability in Microsoft Excel (CVE-2025-30381) exposes users to potential local code execution. Discover the technical details, mitigation strategies, and patch information to safeguard your systems.

ZeroPath Security Research

ZeroPath Security Research

Excel's Memory Mishap: Analyzing CVE-2025-30379's Invalid Pointer Vulnerability
CVE Analysis

2025-05-13

6 min read

Excel's Memory Mishap: Analyzing CVE-2025-30379's Invalid Pointer Vulnerability

Explore CVE-2025-30379, a critical memory handling flaw in Microsoft Excel, allowing local attackers to execute arbitrary code via specially crafted documents.

ZeroPath Security Research

ZeroPath Security Research

Detect & fix
what others miss

Works with
  • GitHub
  • GitLab
  • Bitbucket
  • Azure DevOps Services
  • Jira
  • Linear
  • Slack
  • Security Compass
Security magnifying glass visualization
CVE Analysis | ZeroPath Security Blog - Vulnerability Research & Exploits | Page 64 | ZeroPath