NVD disclosure day

Published threat advisories for February 10, 2016

CVE advisoryKnown Exploit

CVE-2016-0984

Adobe Flash Player and AIR Code Execution Vulnerability.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A use-after-free vulnerability in Adobe Flash Player and Adobe AIR allows for arbitrary code execution on affected systems. This could lead to unauthorized access, data compromise, and disruption of business operations for organizations using these products. As these products are end-of-life, organizations should prior

NVD published: • CISA KEV
CVE advisoryKnown Exploit

CVE-2016-0040

Microsoft Windows Local Privilege Escalation Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in the Microsoft Windows kernel allows local users to gain elevated privileges. Attackers can exploit this by running a crafted application, potentially leading to unauthorized access and modification of system data. The risk is limited to systems with existing local access.

NVD published: • CISA KEV