NVD disclosure day
CVE-2023-44221
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
An authenticated attacker with administrative privileges on affected SonicWall SMA100 SSL-VPN appliances can inject arbitrary commands. This could lead to unauthorized access and modification of system data, posing a business risk. Organizations should identify affected devices and apply vendor updates.
CVE-2023-6448
Halo Surface Signal: 2 out of 5 — less likely to be public-facing.
Unitronics VisiLogic software used in Vision and Samba PLCs and HMIs has a default administrative password vulnerability. Unauthenticated attackers with network access can gain administrative control, potentially disrupting operations and accessing data. This poses a business risk to affected organizations.
CVE-2023-33107
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A memory corruption vulnerability in Graphics Linux impacts various Qualcomm chipsets. This could allow unauthorized access to sensitive data or system control. Organizations should consult vendor advisories for remediation guidance.
CVE-2023-33106
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A memory corruption vulnerability in Qualcomm graphics processors could allow attackers to execute arbitrary code, leading to data compromise or system disruption. This impacts organizations using devices with affected Qualcomm chipsets, potentially affecting employees and systems through unauthorized access and data m
CVE-2023-33063
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A memory corruption vulnerability has been identified affecting Qualcomm chipsets. This could allow for unauthorized access and modification of data, impacting systems and employee productivity. The business risk involves potential data breaches and operational disruptions.