NVD disclosure day

Published threat advisories for March 12, 2020

CVE-2020-0796

Microsoft SMBv3 Remote Code Execution Vulnerability.

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

A vulnerability in Microsoft's SMBv3 protocol could allow attackers to execute code on affected systems. This poses a risk to organizational data and operations. Updates are available to address this vulnerability.

NVD published: March 12, 2020 • CISA KEV

CVE advisoryKnown Exploit

CVE-2020-0787

Windows BITS Privilege Escalation Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in Windows' Background Intelligent Transfer Service allows for privilege escalation when symbolic links are improperly handled. This impacts organizations by enabling unauthorized system control and code execution. The risk is localized as it requires direct system access.

NVD published: March 12, 2020 • CISA KEV