Four vulnerabilities have been discovered in the Windows task scheduling service, which could be exploited by attackers seeking privilege escalation or wishing to erase evidence of malicious activities. Researchers found issues within a binary named “schtasks.exe,” enabling unauthorised access, data theft and further system compromise. To work, the threat actor must acquire a password by other means, such as password cracking or exploiting other flaws.
VMware ESXi, Firefox, Red Hat Linux & SharePoint 0-Day Vulnerabilities Exploited
During Pwn2Own Berlin 2025, researchers exposed critical zero-day vulnerabilities in major platforms like VMware ESXi and Microsoft SharePoint, earning $435,000 in bounties. Notably, Nguyen Hoang
