Pwn2Own Berlin 2026 Concludes: 47 Zero-Days, $1.3 Million Awarded

/MEDIUM
Written by SCW Vulnerability Desk Vulnerability Intelligence
SCW israelvulnerability
Pwn2Own Berlin 2026 Concludes: 47 Zero-Days, $1.3 Million Awarded

The Pwn2Own Berlin 2026 hacking conference wrapped up, yielding an astounding 47 new zero-day vulnerabilities and distributing $1.3 million in rewards, as reported by Cyber News - Erez Dasa. This significant event saw security researchers push enterprise systems to their limits, uncovering critical flaws across various platforms.

DEVCORE emerged as the β€˜Master of Pwn,’ demonstrating a dominant performance with 50.5 points and taking home $505,000. Other notable participants included STARLabs SG, securing second place with 25 points and $242,500, and Out Of Bounds in third. The vulnerabilities discovered ranged from integer overflows in Windows 11 leading to privilege escalation, to exploits against Red Hat Linux and even OpenAI Codex.

For defenders, this haul of 47 zero-days represents a critical, immediate threat landscape shift. While vendors will now work to patch these, the period before widespread deployment leaves organizations exposed. The attacker’s calculus is clear: these newly revealed flaws will be rapidly weaponized by sophisticated groups. CISOs must be thinking about their patch management velocity and the efficacy of their detection capabilities against novel attack vectors.

What This Means For You

  • If your organization utilizes Windows 11, Red Hat Linux, or OpenAI Codex, assume new vulnerabilities exist that are now known to a broader, highly skilled audience. Prioritize monitoring vendor advisories for these platforms and prepare for rapid patching cycles. Review your detection strategies for anomalous behavior that might indicate exploitation of these newly disclosed zero-days.

Related ATT&CK Techniques

T1190 Exploit Public-Facing Application Initial Access T1068 Exploitation for Privilege Escalation Privilege Escalation

πŸ›‘οΈ Detection Rules

3 rules Β· 6 SIEM formats

3 detection rules auto-generated for this incident, mapped to MITRE ATT&CK. Sigma YAML is free β€” export to any SIEM format via the Intel Bot.

critical T1068 Privilege Escalation

DEVCORE Pwn2Own Berlin 2026 Windows 11 Privilege Escalation via Integer Overflow

Sigma YAML β€” free preview

Source: Shimi's Cyber World Β· License & reuse

βœ“ Sigma Β· Splunk SPL Sentinel KQL Elastic QRadar AQL Wazuh Get rules for your SIEM β†’

Indicators of Compromise

IDTypeIndicator
Pwn2Own-Berlin-2026 Zero-Day 47 new zero-day vulnerabilities disclosed at Pwn2Own Berlin 2026

Written by SCW Vulnerability Desk

Take action on this incident
πŸ” Threat intel on DEVCORE All breaches, IOCs & vendor exposure

Related coverage on DEVCORE

Lapsus$ Claims Checkmarx Breach, Google Adjusts Bug Bounty, Blackwater Hits Hospitals

Cyber Updates - Asher Tamam reports that the Lapsus$ group claims a 96GB data leak from Checkmarx, allegedly leveraging credentials stolen via a Trivy tool....

israelvulnerabilitydata-breachcloud
/SCW Vulnerability Desk /MEDIUM /⚑ 5 IOCs /⚙ 3 Sigma

cPanel Critical Vulnerability CVE-2026-41940 Demands Immediate Patching

Cyber News - Erez Dasa reports a critical vulnerability, CVE-2026-41940, impacting cPanel web hosting management systems. Rated with a CVSS score of 9.8, this flaw...

israelvulnerability
/SCW Vulnerability Desk /MEDIUM /⚑ 1 IOC /⚙ 3 Sigma

Apple Patches Critical Notification Data Leak Vulnerability

Apple has issued urgent updates to address CVE-2026-28950, a critical vulnerability within its notification management system. As reported by Cyber Updates - Asher Tamam, this...

israelvulnerability
/SCW Vulnerability Desk /MEDIUM /⚑ 4 IOCs /⚙ 3 Sigma