Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Nir Ohfeld Profile picture
Nir Ohfeld
@nirohfeld
Head of Vulnerability Research @wiz_io | Microsoft MVR (2021-2025) | Pwn2Own 2025 | @Forbes 30 Under 30
Jul 17 5 tweets 2 min read
We found a new container escape affecting all container runtimes using @NVIDIA GPUs.

The crazy part?
The exploit is just three lines long 🤯

This is the story of #NVIDIAScape 🧵👇 Image So how does it work? 🤔

The "NVIDIA Container Toolkit" framework runs several hooks when a container is created.

The catch? 👀

ANY container can pass arbitrary environment variables directly to these hooks! Image
Dec 8, 2022 16 tweets 5 min read
We found a Remote Code Execution vulnerability in every #PostgreSQL database in #IBMCloud 😱

Here is how we did it: 🧵

#HellsKeychain We set up a PostgreSQL instance in IBM Cloud and tried to execute code using the 'COPY FROM PROGRAM' statement. Unfortunately, this failed due to insufficient privileges. We were blocked! 🚫