NVD disclosure day

Published threat advisories for June 29, 2020

CVE advisoryKnown Exploit

CVE-2020-15069

Sophos XG Firewall: Remote Code Execution Risk via Bookmarks Feature.

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

A buffer overflow vulnerability in Sophos XG Firewall's HTTP/S Bookmarks feature allows for remote code execution. This impacts organizations by potentially exposing systems to unauthorized access and data compromise. The realistic business risk involves attackers gaining control of affected firewalls.

NVD published: • CISA KEV
CVE advisoryKnown Exploit

CVE-2020-2021

PAN-OS SAML Authentication Bypass Vulnerability.

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

An unauthenticated attacker can bypass authentication on PAN-OS SAML when certificate validation is disabled. This allows unauthorized access to protected resources like GlobalProtect or administrative interfaces, posing a significant business risk.

NVD published: • CISA KEV