Intelligence Hub
Explore the latest research, advisories, insights, and events in our Intelligence Hub.
CVE-2025-13032: Entering and Breaking the Avast Antivirus Sandbox Part 1
SAFA discovered four distinct kernel heap overflow vulnerabilities in Avast Antivirus. Our research targeted the aswSnx kernel driver, first requiring interesting sandbox manipulation to reach the attack surface. CVE-2025-13032 was assigned to these patched vulnerabilities. This first blog post introduces the vulnerabilities and the challenges of the custom sandbox profile. While a consecutive post will detail how the primitive was exploited for Local Privilege Escalation to System.
SAFA & TeamT5 at Pwn2Own: Vulnerability Demonstration Insights
Cybersecurity is always a work in progress. That’s why SAFA and our key partner, TeamT5, regularly participate in ethical hacking events. They provide a venue to learn about current real-world security issues and sharpen our skills in solving them. This is why we traveled to Toronto, Canada, for the most recent Pwn2Own competition.
See the cybersecurity future with ThreatVision
Schedule a demo to see how ThreatVision can keep you confidently protected from evolving cyber threats.