Demonstrating CVE-2025-4919: Now that it's patched, we can show you how Manfred Paul used this code execution bug in the renderer of #Mozilla Firefox to win $50,000. https://youtu.be/TG029NAGKs0 #Pwn2Own #P2OBerlin

In another video highlight from day three of #Pwn2Own Berlin, Dung and Nguyen of STARLabs take on Oracle VirtualBox - and they add on a Windows kernel LPE to completely take over the system. https://youtube.com/shorts/vLZLAVjCaIY

In another video highlight from day three of #Pwn2Own Berlin, Nir Ohfeld & Shir Tamari of Wiz Research target NVIDIA Container Toolkit. They also talk about how long they researched the bug they used. https://youtube.com/shorts/iapJlDWMP18

In a video highlight from day three of #Pwn2Own Berlin, Manfred Paul takes on Mozilla Firefox (and his own nerves). https://youtube.com/shorts/Xe9ROvpsqwU

In another video highlight from day two of #Pwn2Own Berlin, Viettel Cyber Security used an OOB Write for their Guest-to-Host escape on Oracle VirtualBox on their second attempt. https://youtube.com/shorts/cczvmsbAeq0

In another video highlight from day two of #Pwn2Own Berlin, Gerrard Tai of STAR Labs SG Pte. Ltd takes on Red Heat Linux and explains why his first attempt failed. https://youtube.com/shorts/vBXACPP9D-0

In another video highlight from day two of #Pwn2Own Berlin, Edouard Bochin and Tao Yan from Palo Alto Networks successfully target Mozilla Firefox. https://youtube.com/shorts/nu6D9Fs3otM

In a video highlight from day two of #Pwn2Own Berlin, Mohand Acherir & Patrick Ventuzelo of FuzzingLabs exploit the #NVIDIA Triton Inference server https://youtube.com/shorts/Xuol5l1GupA

In a video highlight from Day One of #Pwn2Own Berlin, Team Viettel targets the #NVIDIA Triton Inference server. https://youtube.com/shorts/dlPjBPr1E5o #P2OBerlin

Congrats to @mozilla for being the first vendor to patch their #Pwn2Own bugs. Oh - and go update #Firefox to get the fixes. That's two years in a row Mozilla has been the fastest. Well done!