Scientific Publications
Security Advisories (CVEs)
- CVE-2026-35553: with Andrea Monzani and Antonio Parata we found a buffer overflow in this driver exploitable by abusing the RtlQueryRegistryValues function.
- CVE-2026-21709: In collaboration with Andrea Monzani and Antonio Parata, we discovered this vulnerability in a driver of Veeam’s utility that allow an attacker to execute a buffer overflow by abusing an incorrect use of the RtlQueryRegistryValues function, that in our PoC allow to disable the DSE.
- CVE-2025-14963: with Andrea Monzani and Antonio Parata we found that fekern.sys is vulnerable to an arbitrary read abusing a specific IOCTL.