CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
security.nl
NCSC verwacht op korte termijn misbruik van MongoDB-kwetsbaarheid
Het Nationaal Cyber Security Centrum (NCSC) verwacht dat aanvallers op korte termijn misbruik zullen maken van een kwetsbaarheid in MongoDB waarvoor een aantal dagen geleden een beveiligingsupdate ver ...
-
CybersecurityNews
Mongobleed PoC Exploit Tool Released for MongoDB Flaw that Exposes Sensitive Data
A proof-of-concept (PoC) exploit dubbed “mongobleed” for CVE-2025-14847, a critical unauthenticated memory leak vulnerability in MongoDB’s zlib decompression handling. Dubbed by its creator Joe Desimo ...
-
TheCyberThrone
CVE-2025-14847 affecting MongoDB
December 27, 2025CVE-2025-14847 exposes MongoDB Server to unauthenticated remote attacks through malformed zlib-compressed protocol headers, leaking uninitialized heap memory on port 27017. This high- ...
-
The Hacker News
New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory
Dec 27, 2025Ravie LakshmananDatabase Security / Vulnerability A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. Th ...
-
CybersecurityNews
TeamViewer DEX Vulnerabilities Let Attackers Trigger DoS Attack and Expose Sensitive Data
Multiple critical vulnerabilities in TeamViewer DEX Client’s Content Distribution Service (NomadBranch.exe), formerly part of 1E Client. Affecting Windows versions before 25.11 and select older branch ...
-
CybersecurityNews
M-Files Vulnerability Let Attacker Capture Session Tokens of Other Active Users
An information disclosure vulnerability in M-Files Server enables authenticated attackers to capture and reuse session tokens from active users. Potentially gaining unauthorized access to sensitive do ...
-
The Cyber Express
Critical Net-SNMP Flaw CVE-2025-68615 Allows Remote Buffer Overflow and Service Crashes
A newly disclosed security issue in the Net-SNMP software suite has raised serious concerns for organizations that rely on the protocol to monitor and manage network infrastructure. The vulnerability, ...
-
The Cyber Express
ParrotOS 7 Released with KDE Plasma 6 and Major System Overhaul
The Parrot Security Team officially released ParrotOS 7, describing it as one of the most significant updates in the project’s history. The new version represents a complete rewrite of the operating s ...
-
TheCyberThrone
When Silence Broke Security: Zero-Days in 2025
PrefaceIn 2025, zero-day vulnerabilities emerged as one of the most decisive factors shaping the global cyber-threat landscape. Attackers increasingly shifted from noisy, opportunistic exploits to pre ...
-
SentinelOne
The Best, the Worst and the Ugliest in Cybersecurity | 2025 Edition
It’s that time of year where we re-visit the wins and challenges from 2025 in our special year-end edition of The Good, The Bad and the Ugly. Here are the biggest stories that defined the best, the wo ...