NVD disclosure day

Published threat advisories for August 15, 2015

CVE-2015-1769

Microsoft Windows Privilege Escalation via USB Device.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in Windows Mount Manager may allow attackers with physical access to execute arbitrary code via a crafted USB device. This could compromise system integrity and data confidentiality.

NVD published: August 15, 2015 • CISA KEV

CVE advisoryKnown Exploit

CVE-2015-1642

Microsoft Office Arbitrary Code Execution Vulnerability.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

Microsoft Office contains a memory corruption flaw that permits attackers to execute arbitrary code via a crafted document. This impacts systems processing affected documents and carries business risk.

NVD published: August 15, 2015 • CISA KEV