Threat Advisories - NVD Disclosed August 27, 2025

CVE-2025-34523

Arcserve UDP allows remote attackers to execute code or cause service disruption

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

A critical flaw in Arcserve UDP allows unauthenticated attackers to crash the service or possibly run their own code remotely, affecting data protection operations. Address this now to prevent disruption.

NVD published: August 27, 2025

CVE advisoryCRITICAL

CVE-2025-34163

Dongsheng Logistics Software allows attackers to take full control of your systems by uploading malicious files.

Halo Surface Signal: 3 out of 5 — possibly public-facing.

An external attacker could run malicious code on servers running Dongsheng Logistics Software by uploading a crafted file. This could allow them to gain control of the system, potentially impacting sensitive logistics data and operations.

NVD published: August 27, 2025

CVE advisoryCRITICAL

CVE-2025-34162

Emergency system allows attackers to steal data or bypass security.

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

An external attacker could steal sensitive patient data or bypass login for the Bian Que system, impacting critical emergency information and leading to unauthorized access.

NVD published: August 27, 2025