NVD disclosure day

Published threat advisories for December 2, 2022

CVE-2022-4262

Google Chrome Type Confusion Vulnerability

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A type confusion vulnerability in Google Chrome's V8 engine could allow remote attackers to corrupt data via a malicious HTML page. This impacts organizations by potentially enabling attackers to execute code, posing a business risk.

NVD published: December 2, 2022 • CISA KEV

CVE advisoryCRITICAL

CVE-2022-2807

Student system lets attackers take control or steal data

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical flaw in Algan's Prens Student Information System lets attackers steal or change sensitive student data over the internet without any special access.

NVD published: December 2, 2022