NVD disclosure day

Published threat advisories for September 24, 2025

CVE-2025-20352

Cisco IOS SNMP Vulnerability Allows Denial of Service or Code Execution.

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

Cisco IOS and IOS XE Software have a vulnerability in their SNMP subsystem that allows authenticated attackers to cause denial of service or execute code as root. This impacts network device availability and control. The business risk involves potential service disruption and unauthorized system access.

NVD published: September 24, 2025 • CISA KEV

CVE advisoryKnown Exploit

CVE-2025-10585

Google Chrome Browser Vulnerability Enables Remote Exploitation

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A type confusion vulnerability in Google Chrome's V8 engine allows remote attackers to exploit heap corruption via a crafted HTML page. This could impact organizations by enabling attackers to execute arbitrary code on affected systems, leading to data compromise or disruption. The risk is elevated as this vulnerabilit

NVD published: September 24, 2025 • CISA KEV