Pwn2Own Toronto 2022 Day 4: $989K awarded for 63 unique zero-days

The Pwn2Own Toronto 2022 is ended, and the participants earned a total of $989,750 for 63 unique zero-day exploits.

The Zero Day Initiative’s Pwn2Own Toronto 2022 hacking competition has ended and these are the final numbers for the event:

• $989,750 awarded
• 63 unique 0-days
• 66 entries
• 36 different teams representing 14+ countries

DEVCORE and @orange_8361 won Master of Pwn for Toronto 2022.

“And we are finished! All of the Day Four results are below. We awarded another $55,000 today bringing our contest total to $989,750. Over the contest, we purchased 63 unique zero days. The Master of Pwn title came down to the wire, but the team from DEVCORE claimed their second title with winnings of $142,500 and 18.5 points.” reads the post published by ZDI. “Team Viettel and the NCC group were close behind with 16.5 and 15.5 points respectively. Congratulations to all the contestants and Pwn2Own winners.”

On the fourth day of the competition, the researcher Chris Anastasio demonstrated a heap-based buffer overflow against the Lexmark printer. He earned $10,000 and 1 Master of Pwn point.

The ANHTUD Information Security Department used another heap-based overflow to exploit the Canon printer. It earned $10K.

The namnp team hacked a Canon printer showing a surprised Pikachu on the display of the device. The team earned $10,000 and 1 Master of Pwn point.

If you want to receive news about FAILURES and BUG COLLISIONS visit the result page of the event.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, Pwn2Own Toronto 2022)

[adrotate banner=”5″]

[adrotate banner=”13″]