NVD disclosure day
CVE-2018-8414
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A vulnerability in the Windows Shell allows for remote code execution if file paths are not properly validated. This could enable an attacker to compromise affected systems, posing a risk to organizational data and operations. Organizations should identify affected systems and apply vendor updates.
CVE-2018-8406
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
An elevation of privilege vulnerability exists in the DirectX Graphics Kernel driver, affecting certain Windows operating systems. This flaw could allow an attacker with local access to gain elevated privileges on a system. Business risk includes potential unauthorized access to sensitive data and system control.
CVE-2018-8405
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A DirectX Graphics Kernel driver vulnerability could allow an attacker with local access to elevate privileges on Windows systems. This could impact system integrity and data confidentiality, posing a business risk to affected organizations. <hr>
CVE-2018-8373
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A vulnerability in the Internet Explorer scripting engine may allow an attacker to execute arbitrary code. This impacts organizations using affected Internet Explorer versions. Exploitation can lead to system compromise and data exposure, increasing business risk.