NVD disclosure day

Published threat advisories for September 19, 2023

CVE advisoryKnown Exploit

CVE-2023-42793

TeamCity Authentication Bypass Leading to Remote Code Execution.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A flaw in JetBrains TeamCity allows unauthorized execution of commands on the server, risking exposure of sensitive data and disruption of development pipelines. Affected organizations face potential compromise of their development environments.

NVD published: • CISA KEV
CVE advisoryKnown Exploit

CVE-2023-41179

Trend Micro Apex One and Worry-Free Business Security Command Execution Vulnerability

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

A vulnerability in Trend Micro products allows an attacker with administrative access to execute arbitrary commands, posing a risk of system compromise and data manipulation. This impacts organizations using Trend Micro Apex One and Worry-Free Business Security.

NVD published: • CISA KEV