NVD disclosure day

Published threat advisories for June 30, 2025

CVE advisoryKnown Exploit

CVE-2025-6554

Remote Code Execution Vulnerability in Google Chrome.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A type confusion vulnerability in Google Chrome's V8 component allows attackers to read or write data arbitrarily. This impacts organizations by potentially compromising sensitive information and system integrity. The risk to business operations is amplified as this vulnerability is actively exploited.

NVD published: • CISA KEV
CVE advisoryKnown Exploit

CVE-2025-32463

Sudo Local Privilege Escalation Vulnerability.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in the Sudo utility allows local users to gain root access by manipulating configuration files during chrooted operations. This could impact systems using affected Sudo versions, enabling attackers with local access to execute arbitrary commands as root, posing a risk to data and system integrity. Organ

NVD published: • CISA KEV