NVD disclosure day

Published threat advisories for April 24, 2017

CVE-2017-5030

Google Chrome Code Execution Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in the V8 JavaScript engine could allow attackers to execute arbitrary code via a crafted HTML page. This affects organizations using affected web browsers, posing a risk of unauthorized code execution and potential data compromise.

NVD published: April 24, 2017 • CISA KEV

CVE advisoryKnown Exploit

CVE-2017-3506

Oracle WebLogic Server: Unauthorized Data Access Risk

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in Oracle WebLogic Server allows an unauthenticated attacker with network access to compromise the system. This could lead to unauthorized data access, modification, or deletion, impacting critical business data and operations.

NVD published: April 24, 2017 • CISA KEV