NVD disclosure day

Published threat advisories for March 10, 2022

CVE-2022-26143

Mitel MiCollab and MiVoice Business Express Information Disclosure and Denial of Service Vulnerability.

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

A vulnerability in Mitel MiCollab and MiVoice Business Express affects the TP-240 component. This flaw allows unauthorized access to sensitive information and can cause denial of service. The risk to organizations includes data exposure and service disruption.

NVD published: March 10, 2022 • CISA KEV

CVE advisoryKnown Exploit

CVE-2022-0847

Linux Kernel Local Privilege Escalation Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A Linux kernel flaw allows local users to escalate privileges by altering read-only files. This impacts system integrity and could lead to unauthorized access. The risk is localized as it requires local user execution.

NVD published: March 10, 2022 • CISA KEV