CVE-2023-41065: Buffer Overflow
First published: Mon Sep 18 2023(Updated: )
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be able to read sensitive location information.
Credit: product-security@apple.com product-security@apple.com Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) ABC Research s.r.o. ABC Research s.r.o. w0wbox Mohamed GHANNAM @_simo36 Mohamed GHANNAM @_simo36 Mohamed GHANNAM @_simo36 Tim Michaud @TimGMichaud MoveworksMickey Jin @patch1t Mickey Jin @patch1t Wojciech Reguła @_r3ggi Kirin @Pwnrin Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Adam M. ABC Research s.r.o. ABC Research s.r.o. w0wbox Mohamed GHANNAM @_simo36 Mohamed GHANNAM @_simo36 Mohamed GHANNAM @_simo36 Tim Michaud @TimGMichaud MoveworksMickey Jin @patch1t Mickey Jin @patch1t Wojciech Reguła @_r3ggi Kirin @Pwnrin Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h w0wbox Mohamed GHANNAM @_simo36 Mohamed GHANNAM @_simo36 Mohamed GHANNAM @_simo36 Tim Michaud @TimGMichaud MoveworksMickey Jin @patch1t Mickey Jin @patch1t Wojciech Reguła @_r3ggi Kirin @Pwnrin Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h ABC Research s.r.o. w0wbox Mohamed GHANNAM @_simo36 Mohamed GHANNAM @_simo36 Mohamed GHANNAM @_simo36 Tim Michaud @TimGMichaud MoveworksMickey Jin @patch1t Mickey Jin @patch1t Wojciech Reguła @_r3ggi Kirin @Pwnrin Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Mohamed GHANNAM @_simo36 Mohamed GHANNAM @_simo36 Mohamed GHANNAM @_simo36 Tim Michaud @TimGMichaud MoveworksMickey Jin @patch1t Mickey Jin @patch1t Wojciech Reguła @_r3ggi Kirin @Pwnrin Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Mohamed GHANNAM @_simo36 Tim Michaud @TimGMichaud MoveworksMickey Jin @patch1t Mickey Jin @patch1t Wojciech Reguła @_r3ggi Kirin @Pwnrin Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Mickey Jin @patch1t Mickey Jin @patch1t Wojciech Reguła @_r3ggi Kirin @Pwnrin Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Tim Michaud @TimGMichaud MoveworksMickey Jin @patch1t Mickey Jin @patch1t Wojciech Reguła @_r3ggi Kirin @Pwnrin Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Mickey Jin @patch1t Wojciech Reguła @_r3ggi Kirin @Pwnrin Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Wojciech Reguła @_r3ggi Kirin @Pwnrin Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Chris Ross (Zoom) Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Csaba Fitzl @theevilbit Offensive Securityzer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h zer0k Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h Adam M. Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Kirin @Pwnrin Yishu Wang Will Brattain at Trail BitsCristian Dinca Computer ScienceRomania JeongOhKyea Theori이준성(Junsung Lee) Cross RepublicKirin @Pwnrin NorthSeaWojciech Regula SecuRingHalle Winkler Politepix @hallewinkler Sei K. Mickey Jin @patch1t Mickey Jin @patch1t Noah Roskin-Frazee Professor Jason Lau (ZeroClicks.ai Lab) Noah Roskin-Frazee Offensive SecurityPr Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityAntonio Zekic @antoniozekic Dataflow SecurityRon Masas ImpervaMurray Mike Csaba Fitzl @theevilbit Offensive SecurityMikko Kenttälä ) @Turmio_ SensorFuYiğit Can YILMAZ @yilmazcanyigit Murray Mike Certik Skyfall Team Certik Skyfall Team Ant Security Light Ant Security Lightpattern-f @pattern_F_ Ant Security LightZweig Kunlun LabLinus Henze Pinauten GmbHPan ZhenPeng @Peterpan0927 STAR Labs SG PteMichael (Biscuit) Thomas 张师傅(@京东蓝军) Joseph Ravichandran @0xjprx MIT CSAILFerdous Saljooki @malwarezoo Jamf Softwarean anonymous researcher Sei K. Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabDohyun Lee @l33d0hyun PK SecurityAdam M. SecuRing SecuRingWojciech Regula SecuRingAdam M. BreakPoint Security Research BreakPoint Security ResearchRon Masas BreakPoint Security ResearchMeng Zhang (鲸落) NorthSeaRon Masas BreakPoint Security ResearchBrian McNulty Texts TextsKishan Bagaria TextsMichael DePlante @izobashi Trend Micro Zero Day InitiativeMickey Jin @patch1t Gergely Kalman @gergely_kalman Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin baba yaga an anonymous researcher weize she an anonymous researcher an anonymous researcher Berke Kırbaş Harsh Jaiswal Kirin @Pwnrin Wojciech Regula SecuRingSerkan Erayabakan George Mason UniversityDavid Kotval George Mason UniversityAkincibor George Mason UniversitySina Ahmadi George Mason University Billy Tabrizi Yiğit Can YILMAZ @yilmazcanyigit Kirin @Pwnrin SecuRing SecuRingWojciech Regula SecuRingCertik Skyfall Team Tomi Tokics @tomitokics iTomsn0wLuan Herrera @lbherrera_ Kirin @Pwnrin Adriatik Raci Sentry CybersecurityNarendra Bhati (twitter.com/imnarendrabhati) Suma Soft PvtPune (India) Yiğit Can YILMAZ @yilmazcanyigit Yiğit Can YILMAZ @yilmazcanyigit Mickey Jin @patch1t Yiğit Can YILMAZ @yilmazcanyigit Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabKirin @Pwnrin Noah Roskin-Frazee (ZeroClicks.ai Lab) James Duffy (mangoSecure) Ron Masas BreakPointan anonymous researcher Gergely Kalman @gergely_kalman Mickey Jin @patch1t James Hutchins Thijs Alkemade @xnyhps Computest Sector 7Andrew Haggard Arsenii Kostromin (0x3c3e) Offensive SecurityJoshua Jewett @JoshJewett33 Offensive Security Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityFrancisco Alonso @revskills PK Security PK SecurityDohyun Lee @l33d0hyun PK SecurityFrancisco Alonso @revskills 이준성(Junsung Lee) Cross RepublicJie Ding @Lime HKUS3 LabAjou University Abysslab Dong Jun Kim @smlijun Jong Seong Kim @nevul37 Bill Marczak The Citizen Lab at The University of Toronto's Munk SchoolMaddie Stone Google's Threat Analysis GroupClaire Houston Anonymous Dong Jun Kim @smlijun AbyssLab AbyssLabJong Seong Kim @nevul37 AbyssLabWang Yu CyberservalAn anonymous researcher MacEnhanceJeremy Legendre MacEnhance Felix Kratz Koh M. Nakagawa @tsunek0h
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iPadOS | <17.0 | |
| Apple iPhone OS | <17.0 | |
| Apple macOS | <14.0 | |
| Apple tvOS | <17.0 | |
| Apple watchOS | <10.0 | |
| Apple watchOS | <10 | 10 |
| Apple tvOS | <17 | 17 |
| Apple iOS | <17 | 17 |
| Apple iPadOS | <17 | 17 |
| Apple macOS | <14 | 14 |
| <14 | 14 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://seclists.org/fulldisclosure/2023/Oct/10
- http://seclists.org/fulldisclosure/2023/Oct/3
- http://seclists.org/fulldisclosure/2023/Oct/8
- http://seclists.org/fulldisclosure/2023/Oct/9
- https://support.apple.com/en-us/HT213936 (Advisory)
- https://support.apple.com/en-us/HT213937 (Advisory)
- https://support.apple.com/en-us/HT213938 (Advisory)
- https://support.apple.com/en-us/HT213940 (Advisory)
- https://support.apple.com/kb/HT213940
- https://support.apple.com/en-us/120950 (Advisory)
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2023-40448
- CVE-2023-40432
- CVE-2023-41174
- CVE-2023-40409
- CVE-2023-40412
- CVE-2023-41071
- CVE-2023-40399
- CVE-2023-40410
- CVE-2023-32361
- CVE-2023-35984
- CVE-2023-41065
- CVE-2023-38596
- CVE-2023-40420
- CVE-2023-40528
- CVE-2023-32396
- CVE-2023-40395
- CVE-2023-40396
- CVE-2023-41981
- CVE-2023-41984
- CVE-2023-40429
- CVE-2023-40400
- CVE-2023-40454
- CVE-2023-41073
- CVE-2023-40403
- CVE-2023-40427
- CVE-2023-42957
- CVE-2023-41068
- CVE-2023-40418
- CVE-2023-42949
- CVE-2023-40456
- CVE-2023-40520
- CVE-2023-35990
- CVE-2023-40417
- CVE-2023-40452
- CVE-2023-41070
- CVE-2023-40419
- CVE-2023-41968
- CVE-2023-40424
- CVE-2023-39434
- CVE-2023-40414
- CVE-2023-41074
- CVE-2023-35074
- CVE-2023-40384
- CVE-2023-40391
- CVE-2023-41063
- CVE-2023-40529
- CVE-2023-42871
- CVE-2023-42872
- CVE-2023-42925
- CVE-2023-38612
- CVE-2023-41232
- CVE-2023-41069
- CVE-2023-41980
- CVE-2023-40431
- CVE-2023-40441
- CVE-2023-40434
- CVE-2023-41995
- CVE-2023-42870
- CVE-2023-41974
- CVE-2023-41060
- CVE-2023-41986
- CVE-2023-40401
- CVE-2023-42934
- CVE-2023-40422
- CVE-2023-40428
- CVE-2023-32359
- CVE-2023-40385
- CVE-2023-42833
- CVE-2023-38610
- CVE-2023-32377
- CVE-2023-38615
- CVE-2023-42929
- CVE-2023-40402
- CVE-2023-40426
- CVE-2023-42876
- CVE-2023-29497
- CVE-2023-42943
- CVE-2023-40406
- CVE-2023-40438
- CVE-2023-41994
- CVE-2023-40407
- CVE-2023-42933
- CVE-2023-40411
- CVE-2023-42959
- CVE-2023-23495
- CVE-2023-38586
- CVE-2023-40436
- CVE-2023-41067
- CVE-2023-32421
- CVE-2023-42826
- CVE-2023-42918
- CVE-2023-40455
- CVE-2023-40386
- CVE-2023-38408
- CVE-2023-40393
- CVE-2023-37448
- CVE-2023-38607
- CVE-2023-41987
- CVE-2023-39233
- CVE-2023-40388
- CVE-2023-40430
- CVE-2023-41996
- CVE-2023-41078
- CVE-2023-40541
- CVE-2023-41079
- CVE-2023-40443
- CVE-2023-40450
- CVE-2023-42948
- CVE-2023-41993
- CVE-2023-41066
- CVE-2023-41979
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-41065.
What is the title of this vulnerability?
The title of this vulnerability is 'bootp. A privacy issue was addressed with improved private data redaction for log entries.'
Which software products are affected by this vulnerability?
The software products affected by this vulnerability are Apple tvOS (up to version 17), Apple iOS (up to version 17), Apple iPadOS (up to version 17), Apple watchOS (up to version 10), and Apple macOS Sonoma (up to version 14).
How was the privacy issue addressed?
The privacy issue was addressed with improved private data redaction for log entries.
Are there any references or additional resources available?
Yes, you can find more information at the following references: [Link 1](https://support.apple.com/en-us/HT213937), [Link 2](https://support.apple.com/en-us/HT213936), [Link 3](https://support.apple.com/en-us/HT213940).
- agent/type
- agent/first-publish-date
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/severity
- collector/apple-support
- source/Apple
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- agent/source
- alias/CVE-2023-38615
- alias/CVE-2023-40448
- alias/CVE-2023-40432
- alias/CVE-2023-42871
- alias/CVE-2023-40399
- alias/CVE-2023-40410
- alias/CVE-2023-42872
- alias/CVE-2023-42929
- alias/CVE-2023-42925
- alias/CVE-2023-38612
- alias/CVE-2023-32361
- alias/CVE-2023-35984
- alias/CVE-2023-40402
- alias/CVE-2023-40426
- alias/CVE-2023-42876
- alias/CVE-2023-41065
- alias/CVE-2023-29497
- alias/CVE-2023-38596
- alias/CVE-2023-42943
- alias/CVE-2023-40406
- alias/CVE-2023-40420
- alias/CVE-2023-40528
- alias/CVE-2023-40438
- alias/CVE-2023-41994
- alias/CVE-2023-40407
- alias/CVE-2023-32396
- alias/CVE-2023-42933
- alias/CVE-2023-41980
- alias/CVE-2023-40411
- alias/CVE-2023-40395
- alias/CVE-2023-40391
- alias/CVE-2023-40441
- alias/CVE-2023-42959
- alias/CVE-2023-23495
- alias/CVE-2023-40434
- alias/CVE-2023-38586
- alias/CVE-2023-40436
- alias/CVE-2023-40396
- alias/CVE-2023-41995
- alias/CVE-2023-42870
- alias/CVE-2023-41981
- alias/CVE-2023-41984
- alias/CVE-2023-40429
- alias/CVE-2023-41060
- alias/CVE-2023-41067
- alias/CVE-2023-40400
- alias/CVE-2023-40454
- alias/CVE-2023-41073
- alias/CVE-2023-40403
- alias/CVE-2023-40427
- alias/CVE-2023-42957
- alias/CVE-2023-32421
- alias/CVE-2023-42826
- alias/CVE-2023-42918
- alias/CVE-2023-41986
- alias/CVE-2023-40455
- alias/CVE-2023-40386
- alias/CVE-2023-38408
- alias/CVE-2023-40401
- alias/CVE-2023-40393
- alias/CVE-2023-42949
- alias/CVE-2023-42934
- alias/CVE-2023-37448
- alias/CVE-2023-38607
- alias/CVE-2023-41987
- alias/CVE-2023-41063
- alias/CVE-2023-40422
- alias/CVE-2023-39233
- alias/CVE-2023-40388
- alias/CVE-2023-35990
- alias/CVE-2023-40417
- alias/CVE-2023-40452
- alias/CVE-2023-40430
- alias/CVE-2023-41996
- alias/CVE-2023-41078
- alias/CVE-2023-41070
- alias/CVE-2023-40541
- alias/CVE-2023-41079
- alias/CVE-2023-40443
- alias/CVE-2023-41968
- alias/CVE-2023-40450
- alias/CVE-2023-42948
- alias/CVE-2023-40424
- alias/CVE-2023-39434
- alias/CVE-2023-40414
- alias/CVE-2023-41074
- alias/CVE-2023-35074
- alias/CVE-2023-41993
- alias/CVE-2023-32359
- alias/CVE-2023-40385
- alias/CVE-2023-42833
- alias/CVE-2023-38610
- alias/CVE-2023-41066
- alias/CVE-2023-41979
- alias/CVE-2023-32377
- agent/references
- agent/weakness
- agent/author
- agent/description
- agent/softwarecombine
- agent/tags
- vendor/apple
- canonical/apple ipados
- canonical/apple iphone os
- canonical/apple macos
- canonical/apple tvos
- canonical/apple watchos
- canonical/apple ios