NVD disclosure day

Published threat advisories for October 4, 2023

CVE-2023-42824

Apple iOS and iPadOS Privilege Escalation Vulnerability.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A local attacker may gain elevated privileges on affected Apple devices, potentially leading to unauthorized access to data and system modifications. This issue has been reported as actively exploited on prior iOS versions.

NVD published: October 4, 2023 • CISA KEV

CVE advisoryKnown Exploit

CVE-2023-22515

Confluence Data Center and Server Unauthorized Administrator Account Creation

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

External attackers can exploit a vulnerability in Atlassian Confluence Data Center and Server to create unauthorized administrator accounts, potentially leading to data compromise and business disruption.

NVD published: October 4, 2023 • CISA KEV