The Pwn2Own Vancouver 2022: Trend Micro and ZDI awarded $1,155,000

Pierluigi Paganini May 22, 2022

The Pwn2Own Vancouver 2022 hacking contest ended, Trend Micro and ZDI awarded a total of $1,155,000 for successful attempts!

During the third day of the Pwn2Own Vancouver 2022 hacking competition, white hat hackers demonstrated a working exploit against Microsoft Windows 11 OS.

nghiadt12 from Viettel Cyber Security demonstrated an exploit for an escalation of privilege via Integer Overflow on Microsoft Windows 11. The exploit was awarded $40,000 and 4 Master of Pwn points.

Other contestants demonstrated working exploits for Microsoft Windows 11.

vinhthp1712 demonstrated an elevation of privilege via improper access control on Microsoft Windows 11. The expert earned $40,000 and 4 Master of Pwn points.

On the final attempt of the competition, Bruno PUJOS (@brunopujos) from REverse Tactics successfully achieved elevation of privilege via use-after-free on Microsoft Windows 11. The researchers earned $40,000 and 4 Master of Pwn points.

Another success was achieved by Billy Jheng Bing-Jhong (@st424204) from STAR Labs, the expert demonstrated a Use-After-Free exploit on Ubuntu Desktop earning another $40,000 and 4 Master of Pwn points.

Pwn2Own Vancouver 2022 hacking contest ended, it was the 15th edition of the important event organized by Trend Micro’s Zero Day Initiative (ZDI). This year, 17 contestants are attempted to exploit 21 targets across multiple categories and Trend Micro and ZDI awarded $1,155,000!

With all of the points totaled, @starlabs_sg has been crowned Master of Pwn for #Pwn2Own Vancouver 2022! They wan $270,000 and 27 points during the contest. pic.twitter.com/NfaraWcnbA
— Zero Day Initiative (@thezdi) May 21, 2022

We've wrapped #Pwn2Own Vancouver 2022 – the 15th anniversary of the contest. We awarded $1,155,000 for 25 unique 0-days. Join @MaliciousInput and @dustin_childs as they recap the event. https://t.co/UIMiz3xVZ7
— Zero Day Initiative (@thezdi) May 20, 2022

Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. I ask you to vote for me again (even if you have already done it), because this vote is for the final.
Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog”)
To nominate, please visit: 
https://docs.google.com/forms/d/e/1FAIpQLSdNDzjvToMSq36YkIHQWwhma90SR0E9rLndflZ3Cu_gVI2Axw/viewform

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, Pwn2Own Vancouver 2022)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini July 07, 2025

Taiwan flags security risks in popular Chinese apps after official probe

Pierluigi Paganini July 07, 2025