NVD disclosure day

Published threat advisories for April 6, 2017

CVE-2016-8735

Apache Tomcat Remote Code Execution Via JMX Port

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

Remote code execution is possible in Apache Tomcat when the JmxRemoteLifecycleListener is used and JMX ports are reachable. This vulnerability could allow attackers to execute arbitrary code, impacting system integrity and potentially leading to unauthorized access. Organizations using affected versions should review t

NVD published: April 6, 2017 • CISA KEV

CVE advisoryKnown Exploit

CVE-2017-6884

Zyxel Router Command Injection Vulnerability

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

A command injection vulnerability in Zyxel EMG2926 routers allows unauthorized command execution. This poses a business risk by potentially compromising network security and data integrity.

NVD published: April 6, 2017 • CISA KEV