Threat Advisories - NVD Disclosed February 5, 2019

CVE-2018-20250

WinRAR Path Traversal Affects File Extraction.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A path traversal vulnerability in WinRAR's ACE file format handling allows specially crafted filenames to bypass extraction restrictions, potentially enabling unauthorized file placement and modifications. This could lead to attackers gaining system control by overwriting critical files, impacting operations and potent

NVD published: February 5, 2019 • CISA KEV

CVE advisoryKnown Exploit

CVE-2018-20753

Kaseya VSA Unprivileged Remote Code Execution Advisory.

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

Unprivileged remote attackers can execute PowerShell payloads on managed devices using affected Kaseya VSA software. This poses a business risk of unauthorized code execution on all managed systems. Active exploitation has been observed.

NVD published: February 5, 2019 • CISA KEV

CVE advisoryKnown Exploit

CVE-2017-18362

Kaseya VSA Database Access Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

Unauthenticated commands through a Kaseya VSA integration can grant attackers direct database access, enabling arbitrary SQL queries. This has been exploited to deploy ransomware on managed endpoints, posing a significant risk to organizational systems and data.

NVD published: February 5, 2019 • CISA KEV