Security Researchers Earn $385,750 on Day Two of Pwn2Own Berlin 2026

On the second day of Pwn2Own Berlin 2026, security researchers earned $385,750 by demonstrating 15 unique zero-day vulnerabilities, raising the event’s total payout to $908,750 across 39 vulnerabilities over two days. The exploits targeted products including Windows 11, Microsoft Exchange, and Red Hat Enterprise Linux. No specific CVE IDs or technical details of the vulnerabilities were disclosed in the report. The event took place in Berlin, with no exact date provided beyond the year 2026. The impact involved successful zero-day demonstrations, though no further consequences (e.g., exploitation in the wild) were mentioned.