CVE-2026-20753: Integer Overflow in Slim Bootloader's ext2 Reader
SecMate researchers discovered CVE-2026-20753 in Intel Slim Bootloader: a crafted ext2 superblock could make the bootloader under-allocate its group …
Maxime Rossi Bellom
Co-Founder and CTO
Maxime Rossi Bellom, Co-Founder and CTO
Maxime is turning years of offensive research into a security teammate for developers. As a researcher at Quarkslab, he led work that hacked Google Pixel and Samsung Galaxy phones, and he is a frequent speaker at conferences like Black Hat. That attacker experience now powers SecMate’s mission to find the exploitable issues in complex code that traditional scanners miss.
4m
Four Vulnerabilities in Tuya's Arduino TuyaOpen Framework
SecMate found four vulnerabilities in Tuya’s arduino-tuyaopen framework: a DNS heap overflow, an out-of-bounds read in DP handling, a heap …
3m
Memory Safety Vulnerabilities in Renesas FSP Cryptographic and Networking Code
SecMate found seven vulnerabilities in Renesas FSP for RA microcontrollers. The most relevant cases affect RSA verification, AES-XTS finalization, GCM …
9m
Six Vulnerabilities in Siemens SICAM SIAPP SDK
SecMate identified six vulnerabilities in Siemens SICAM SIAPP SDK before version 2.1.7. Five of the affected code paths were present in the public …
15m
Four Memory Safety Vulnerabilities in Golioth's IoT Firmware
We found four memory safety vulnerabilities in Golioth’s IoT firmware SDK and Pouch BLE protocol. Each is independently triggerable under its …
3m
SecMate Joins the Cyber Defense Factory Program
SecMate joins the Cyber Defense Factory, a program led by the French Defence Innovation Agency (AID).
8m
Rust Support in SecMate: Two CVEs in RustFS
SecMate adds Rust support to its AI-powered vulnerability scanner. Our first Rust target? RustFS, where we found an authentication bypass and a remote …
6m
How SecMate Discovered two Vulnerabilities in libcoap
We built an AI-powered vulnerability scanner for embedded systems. Our first real-world test found two vulnerabilities in libcoap, including an …
12m
Is Vibe Coding a Security Nightmare? A Benchmark of AI Coding Agents
We benchmark 5 AI coding assistants across 240 code samples and find a 71.6% security issue rate. Is AI-powered vibe coding creating security …
6m
From the Attacker's Playbook to Your Pull Request
Introducing SecMate, your security teammate born from years of offensive research.