NVD disclosure day

Published threat advisories for June 10, 2025

CVE-2025-33073

Windows SMB Privilege Escalation Vulnerability

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

An improper access control vulnerability in Windows SMB allows an authenticated attacker to elevate privileges over a network. This impacts organizations by enabling unauthorized access to systems and data, potentially leading to full system compromise. The realistic business risk includes unauthorized system control a

NVD published: June 10, 2025 • CISA KEV

CVE advisoryKnown Exploit

CVE-2025-33053

Microsoft Windows Internet Shortcut Code Execution Vulnerability.

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

Windows systems are affected by a vulnerability in Internet Shortcut files that allows an unauthorized attacker to execute code remotely. This poses a business risk as it could lead to a compromise of system integrity and data confidentiality. Organizations should apply vendor patches and monitor for related security e

NVD published: June 10, 2025 • CISA KEV