NVD disclosure day

Published threat advisories for April 8, 2019

CVE-2019-0211

Apache HTTP Server Local Privilege Escalation.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in Apache HTTP Server versions 2.4.17 to 2.4.38 could permit unauthorized code execution, potentially with elevated privileges. This impacts organizations using affected versions, risking unauthorized system control.

NVD published: April 8, 2019 • CISA KEV

CVE advisoryKnown Exploit

CVE-2019-11001

Reolink Cameras: OS Command Injection Risk

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

Authenticated command injection affects certain Reolink IP camera models. Exploiting the "TestEmail" function allows unauthorized root command execution, posing a risk to data confidentiality and system integrity. This could impact affected devices and organizational data.

NVD published: April 8, 2019 • CISA KEV