NVD disclosure day
CVE-2021-35395
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
The Realtek Jungle SDK's HTTP web server has vulnerabilities that may allow remote attackers to execute arbitrary code. This affects organizations using networking devices with this SDK, posing a business risk of system compromise. Exploitation depends on vendor implementation.
CVE-2021-35394
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
A vulnerability in Realtek's Jungle SDK allows remote attackers to inject commands and compromise systems. This impacts organizations using devices with the affected SDK, risking unauthorized access and data manipulation. Mitigation requires identifying vulnerable assets and applying vendor updates.
CVE-2021-26086
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A path traversal vulnerability in Atlassian Jira Server and Data Center allows attackers to read specific files, posing a risk of unauthorized data exposure. This vulnerability affects certain versions of the software and has been listed on the Known Exploited Vulnerabilities catalog, warranting immediate attention.