NVD disclosure day
CVE-2024-38112
Halo Surface Signal: 2 out of 5 — less likely to be public-facing.
A spoofing vulnerability in the Windows MSHTML Platform affects confidentiality, integrity, and availability. Attackers can impersonate trusted content, leading to potential data loss and system disruption. This presents a business risk to data and systems that requires attention.
CVE-2024-38094
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A deserialization vulnerability in Microsoft SharePoint Server could permit remote code execution by authenticated attackers. This impacts confidentiality, integrity, and availability, posing a significant business risk. Its inclusion on the CISA Known Exploited Vulnerabilities catalog indicates a need for immediate ac
CVE-2024-38080
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A vulnerability in Windows Hyper-V could allow a local attacker with user privileges to escalate their access to the system level. This may impact system integrity and data availability for affected organizations. The risk is considered internal, requiring an attacker to have existing access to the system.