Research moved to my personal blog:
Mykola Grymalyuk khronokernel
khronokernel
/ PCIe-TB3-NIC.md
Last active
November 22, 2021 19:14
Thunderbolt Docks and associated Ethernet Controller
khronokernel
/ CVE-2023-50975.md
Last active
February 21, 2024 21:03
Arbitrary Code Execution in TD Advanced Dashboard
On December 12th, 2023, TD Bank was notified through their responsible disclosure system that TD Advanced Dashboard version 3.0.3 was vulnerable to arbitrary code execution.
- TD Advanced Dashboard
- Affected: 3.0.3 and older
- Fixed: 3.0.4
khronokernel
/ CVE-2024-25545.md
Last active
April 15, 2024 02:27
Arbitrary Code Execution in Weave Desktop
On January 9th, 2024, Weave was notified through their responsible disclosure system that Weave version 7.78.10 is vulnerable to arbitrary code execution and as of April 9th, 2024, is still vulnerable.
Note while Weave does list a paid bug bounty on their site, no compensation was given.
- Weave Desktop
- Affected: All current versions (7.78.10 through 7.84.1 confirmed)
khronokernel
/ electron_patcher.py
Last active
February 4, 2026 18:54
Electron and Chrome patcher to force OpenGL rendering
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| """ | |
| electron_patcher.py: Enforce 'use-angle@1' in Chrome and Electron applications | |
| Version 1.0.0 (2024-08-11) | |
| """ | |
| import enum | |
| import json | |
| from pathlib import Path |