Threat Advisories - NVD Disclosed June 8, 2021

CVE-2021-33742

Windows MSHTML Platform Remote Code Execution Vulnerability

Halo Surface Signal: 3 out of 5 — possibly public-facing.

A vulnerability in the Windows MSHTML Platform could allow attackers to execute arbitrary code on affected systems. This can lead to unauthorized access and control, impacting data integrity and business operations. The risk arises when users interact with specially crafted content.

NVD published: June 8, 2021 • CISA KEV

CVE advisoryKnown Exploit

CVE-2021-33739

Microsoft DWM Core Library Privilege Escalation Vulnerability.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in Microsoft's Desktop Window Manager (DWM) Core Library allows an attacker with local access to elevate privileges. This could grant an attacker administrative control, leading to data compromise or operational disruption, posing a business risk.

NVD published: June 8, 2021 • CISA KEV

CVE advisoryKnown Exploit

CVE-2021-31956

Microsoft Windows NTFS Elevation of Privilege Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in the Windows NTFS component allows local attackers to escalate privileges. This could impact organizations by enabling unauthorized system control and data compromise. The business risk involves potential unauthorized access to sensitive information and disruption of operations.

NVD published: June 8, 2021 • CISA KEV

CVE advisoryKnown Exploit

CVE-2021-31955

Windows Kernel Information Disclosure Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A Windows Kernel vulnerability permits attackers with local access to read kernel memory, potentially exposing sensitive data. This impacts organizations by risking confidential information and aiding further system compromise. The realistic business risk involves unauthorized access to system details.

NVD published: June 8, 2021 • CISA KEV

CVE advisoryKnown Exploit

CVE-2021-31201

Microsoft Cryptographic Provider Privilege Escalation Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in Microsoft's Enhanced Cryptographic Provider could allow an attacker with local access to gain elevated privileges. This could impact data integrity and confidentiality on affected Windows systems. The U.S. government has identified this as a known exploited vulnerability, suggesting active threat act

NVD published: June 8, 2021 • CISA KEV

CVE advisoryKnown Exploit

CVE-2021-31199

Microsoft Enhanced Cryptographic Provider Privilege Escalation.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A weakness in Microsoft's Enhanced Cryptographic Provider could allow an attacker with local access to gain elevated permissions on affected systems. This may lead to unauthorized access to data or system modifications. The risk is localized, requiring initial access to the system.

NVD published: June 8, 2021 • CISA KEV

CVE advisoryKnown Exploit

CVE-2021-1675

Windows Print Spooler Vulnerability Allows Code Execution.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

The Windows Print Spooler service has a vulnerability allowing attackers to execute code with elevated privileges. This impacts Windows systems and could lead to unauthorized access and compromise of sensitive data, posing a significant business risk. Organizations should apply vendor updates and restrict access to the

NVD published: June 8, 2021 • CISA KEV