NVD disclosure day

Published threat advisories for October 5, 2021

CVE-2021-39226

Grafana Snapshot Data Viewing and Deletion Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in Grafana allows unauthorized users to view and delete snapshot data. This could lead to complete data loss and disrupt business operations. Affected organizations should apply vendor-provided updates to mitigate this risk.

NVD published: October 5, 2021 • CISA KEV

CVE advisoryKnown Exploit

CVE-2021-41773

Apache HTTP Server Path Traversal Vulnerability

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

A path traversal vulnerability in Apache HTTP Server allows attackers to access unintended files, potentially leading to remote code execution. This is a known exploited issue, posing a significant risk to affected organizations and their data. Prompt remediation is advised.

NVD published: October 5, 2021 • CISA KEV