NVD disclosure day
CVE-2019-0859
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A Windows Win32k component vulnerability may allow privilege escalation. This impacts organizations by enabling unauthorized control over systems if an attacker with local access exploits the memory handling flaw. Business risk includes potential data compromise and system disruption.
CVE-2019-0841
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A vulnerability in the Windows AppX Deployment Service allows for elevation of privilege when handling hard links. This impacts Windows systems and could enable attackers with existing access to gain elevated privileges, posing a business risk to system integrity and data confidentiality.
CVE-2019-0803
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
An elevation of privilege vulnerability exists in Windows when the Win32k component improperly handles objects in memory. This could allow an attacker with local access to gain elevated privileges on an affected system, posing a business risk. Organizations should apply security updates to affected Windows systems.
CVE-2019-0752
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A remote code execution vulnerability exists in Internet Explorer's scripting engine, potentially allowing attackers to compromise systems. This impacts organizations using affected versions by creating a risk of unauthorized code execution and data breaches. The realistic business risk involves potential system compro
CVE-2019-0808
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
An elevation of privilege vulnerability in the Windows Win32k component allows attackers with local access to gain elevated privileges on affected systems. This poses a risk of unauthorized system control and potential data access for organizations using vulnerable Windows versions.
CVE-2019-0797
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
This vulnerability affects Microsoft Windows operating systems, impacting the Win32k component. It allows an attacker with local access to elevate privileges and execute code in kernel mode. This poses a business risk by potentially leading to unauthorized control and compromise of affected systems.
CVE-2019-0703
Halo Surface Signal: 2 out of 5 — less likely to be public-facing.
A vulnerability in the Windows SMB Server could allow unauthorized access to information. This impacts organizations running affected Windows versions, potentially exposing sensitive data. The risk is data disclosure from servers due to improper request handling.