NVD disclosure day

Published threat advisories for October 13, 2017

CVE-2017-11826

Microsoft Office Memory Corruption Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

Microsoft Office software has a vulnerability allowing arbitrary code execution if an application improperly handles memory objects. This could impact organizations by enabling attackers to gain unauthorized control of systems and data, posing a significant business risk.

NVD published: October 13, 2017 • CISA KEV

CVE advisoryKnown Exploit

CVE-2017-11774

Microsoft Outlook Command Execution Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

Microsoft Outlook versions are affected by a vulnerability allowing arbitrary command execution due to improper object handling in memory. This presents a business risk of unauthorized command execution, potentially leading to system compromise and data breaches. Organizations using affected Outlook versions should add

NVD published: October 13, 2017 • CISA KEV