NVD disclosure day
CVE-2024-21413
Halo Surface Signal: 2 out of 5 — less likely to be public-facing.
Microsoft Outlook applications are impacted by a vulnerability that could allow attackers to execute remote code, bypassing security features. This poses a business risk of unauthorized system access and data compromise.
CVE-2024-21412
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
This vulnerability impacts Microsoft Windows operating systems by allowing attackers to bypass security features through specially crafted Internet Shortcut files. This could enable unauthorized access to data or system compromise, posing a business risk that requires prompt attention and mitigation. The vulnerability
CVE-2024-21410
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
This vulnerability in Microsoft Exchange Server allows attackers to elevate privileges, potentially leading to unauthorized access and compromise of sensitive data. Organizations with affected Exchange Server deployments face business risks including data breaches and service disruptions. Mitigation is recommended.
CVE-2024-21351
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A vulnerability in Windows SmartScreen allows attackers to bypass security features, potentially leading to unauthorized code execution. This could result in data exposure or system downtime for affected organizations. The risk to business operations is significant.
CVE-2024-21338
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A vulnerability in the Windows kernel allows for privilege escalation by an attacker with local access, potentially impacting system integrity and data confidentiality. The business risk involves unauthorized access and modification of sensitive information on affected systems.