NVD disclosure day

Published threat advisories for July 2, 2021

CVE advisoryKnown Exploit

CVE-2021-34527

Windows Print Spooler Remote Code Execution Vulnerability

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

A vulnerability in the Windows Print Spooler service could allow unauthorized code execution with system privileges. This could enable attackers to install programs, alter or delete data, and create new user accounts, posing a risk to organizational data and systems.

NVD published: • CISA KEV
CVE advisoryKnown Exploit

CVE-2021-30554

Google Chrome WebGL Heap Corruption Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A memory corruption flaw in Google Chrome's WebGL component allows attackers to potentially compromise data. This vulnerability can be exploited by directing users to a malicious webpage, posing a risk to system integrity and confidentiality. Organizations should update affected browsers.

NVD published: • CISA KEV