NVD disclosure day

Published threat advisories for September 27, 2019

CVE-2019-16928

Exim Internet Mailer Code Execution Vulnerability

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

Exim mail transfer agent versions 4.92 through 4.92.2 contain a heap-based buffer overflow vulnerability. Attackers can exploit this to execute arbitrary code, leading to unauthorized system access and potential data compromise.

NVD published: September 27, 2019 • CISA KEV

CVE advisoryKnown Exploit

CVE-2019-16920

D-Link Router Command Injection Vulnerability

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

Certain D-Link routers are susceptible to a command injection vulnerability. This allows unauthenticated attackers to gain full system control by sending malicious input to a device's gateway interface. The risk to affected organizations involves potential system compromise and unauthorized access.

NVD published: September 27, 2019 • CISA KEV