CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
cert.pl
Vulnerability in Kidsview application
Vulnerability in Kidsview application CVE ID CVE-2026-8990 Publication date 28 May 2026 Vendor View Concept Product Kidsview Vulnerable versions From 4.0.1 to 4.4.3 Vulnerability type (CWE) Authentica ...
-
cert.pl
Vulnerability in bzip2 software
Vulnerability in bzip2 software CVE ID CVE-2026-42250 Publication date 28 May 2026 Vendor bzip2 Product bzip2 Vulnerable versions All before 1.0.9 Vulnerability type (CWE) Out-of-bounds Write (CWE-787 ...
-
cert.pl
Vulnerability in D-Link DWR-X1820 router
Vulnerability in D-Link DWR-X1820 router CVE ID CVE-2026-4377 Publication date 28 May 2026 Vendor D-Link Corporation Product DWR-X1820 Vulnerable versions From 1.00B14CP to 1.00B16CP Vulnerability typ ...
-
CybersecurityNews
Gitea Container Vulnerability Exposes Private Container Images to Attackers
A critical security vulnerability in Gitea’s built-in container registry exposes private container images to unauthenticated attackers, raising significant concerns for organizations that rely on self ...
-
CybersecurityNews
Veeam Backup & Replication Tool Vulnerability Enables Privilege Escalation Attacks
Veeam has addressed a high-severity vulnerability in its Backup & Replication platform that could enable attackers to escalate privileges and gain deeper access to enterprise systems. The issue impact ...
-
CybersecurityNews
Microsoft Warns Public Release of Zero-Day Details Before Vendor Coordination
Microsoft has issued a strong warning after multiple zero-day vulnerabilities were publicly disclosed without prior coordination, raising concerns about increased risk to users and enterprise environm ...
-
CybersecurityNews
Critical Notepad++ Vulnerabilities Allow Attackers to Execute Arbitrary Code
Notepad++, one of the most widely used open-source text editors for Windows, has released an urgent security update addressing three vulnerabilities, including two arbitrary code execution flaws that ...
-
CybersecurityNews
FortiClient Code Execution Vulnerability Exploited to Deploy EKZ Malware
A newly observed exploitation campaign targeting FortiClient Endpoint Management Server (EMS) has weaponized trusted administrative infrastructure to silently deploy a previously unreported credential ...
-
TheCyberThrone
CVE-2026-48172 — LiteSpeed User-End cPanel Plugin Privilege Escalation
May 28, 2026OverviewCISA has added CVE-2026-48172 to its Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. The flaw is a maximum-severity privilege escalation vulner ...
-
CybersecurityNews
Attackers Can Exploit BadHost to Access Sensitive AI Agent Server Endpoints
A newly disclosed critical vulnerability, tracked as CVE-2026-48710 and dubbed “BadHost,” is putting thousands of AI-powered applications at risk by enabling authentication bypass through manipulated ...