Pawan Shivarkar

Pawan Shivarkar is a Security Researcher, working as a Staff Offensive Security Researcher @ NVIDIA, focusing on Embedded Firmware and critical System Software across HPC, AI/cloud, autonomous and IoT platforms performing offensive research, vulnerability discovery, and exploitation across diverse HW/SW targets..

Previously, he was Security Research Manager at Qualys, leading vulnerability research under the Threat Research Unit. He held past roles at Microsoft (MSRC), FireEye (FLARE), and Symantec (STAR Team), with expertise in vulnerability/exploit dev, malware RE, low-level sec & fuzzing. He holds 4 patents (incl. 2 with Symantec & 1 with FireEye) and has published dozens of product CVEs.

Selected Highlights of Work:

GPU & Driver Vulnerabilities:

AMD:CVE‑2025‑21780

Intel: CVE‑2023‑23507

Apple: CVE‑2022‑26772, CVE‑2022‑32793, CVE‑2022‑22674

Others: CVE‑2023‑33863/64/65 (RenderDoc RCE chain)

Linux Kernel & Open Source Software:

CVE‑2025‑6018/6019 (PAM/libblockdev local privilege escalation chain)

CVE‑2024‑48990 → 11003 (needrestart local privilege escalations)

CVE‑2024‑6387 (“regreSSHion” OpenSSH pre-auth root RCE)

CVE‑2023‑6246/4911 (glibc “Looney Tunables” memory corruption)

CVE‑2023‑0179, CVE‑2023‑0386, CVE‑2022‑0185, CVE‑2020‑14386

OpenSSH Vulns:

CVE‑2025‑26466 (OpenSSH pre-auth DoS)

CVE‑2025‑26465 (OpenSSH client MitM attack)

Windows Kernel & Services:

CVE‑2025‑32709 (Windows AFD.sys UAF leading to privilege escalation)

CVE‑2024‑21431 (HVCI bypass)

CVE‑2023‑28251, CVE‑2023‑21743

CVE‑2022‑38023 (Netlogon RPC EoP), CVE‑2022‑24500/24541, CVE‑2022‑41113

macOS / iOS Kernel

CVE‑2025‑30452 (Sandbox escape)

CVE‑2021‑30883 (Apple IOMFB 0-day kernel RCE)

CVE‑2019‑8703, CVE‑2017‑2440/13835/13843

CVE‑2022‑22675 (AppleAVD OOB write to code execution)

Browser & JavaScript Engines

Chromium: CVE‑2023‑0129/2313

V8:CVE‑2022‑1096 (0-day RCE)

WebKit: CVE‑2021‑1871, CVE‑2017‑2376 (Safari)

Other libs: CVE‑2017‑5130 (libxml2), CVE‑2020‑15969 (Chrome UAF)

Virtualization & Hypervisors

QEMU: CVE‑2017‑2620/CVE-2017-2633/CVE‑2016‑9603

Hyper-V: CVE‑2022‑24537/CVE‑2021‑34450 – Hyper‑V guest‑to‑host RCE

Firmware, CPU & BIOS

CVE‑2020‑0594/0595: Intel AMT/ISM firmware OOB read & UAF in IPv6 subsystem

CVE‑2023‑30768 (Intel S2600 BIOS local privilege escalation)

CVE‑2019‑2294: Qualcomm Audio DSP heap corruption

� Threat Research

At FireEye/MSRC, contributed to tracking:

Regin

Strider

Sowbug

Mebroot MBR rootkit

Several in-the-wild 0days, APTs, and botnet infra

🚨 full list of CVE's available here_ 🚨

🎓 Education

MS Information Systems, University of Pune

📌 Patents

4 patents (Symantec, FireEye, independent) in malware RE, exploit techniques, security automation

Github Profile:https://github.com/pawan-shivarkar