CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
iPhone Exploit Toolkit Used by Russian Spies Likely Originated from U.S. Contractor
iPhone Exploit Toolkit Used Russian Spies A powerful iPhone exploit kit named “Coruna,” initially created for Western intelligence by U.S. contractor L3Harris, has fallen into the hands of Russian spi ...
-
Daily CyberSecurity
Critical Alert: SAP’s Latest Security Update Fixes 9.8 CVSS RCE and Deserialization Flaws
Today, 2026, SAP released its monthly security patch update, addressing 15 new security notes across its product ecosystem. This month’s update is particularly significant, featuring two Critical prio ...
-
The Hacker News
CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. Th ...
-
Daily CyberSecurity
Total Platform Compromise: Critical 9.6 CVSS Flaws in Budibase Expose Production Secrets
Budibase, the popular open-source low-code platform designed for building internal business applications, has released critical security patches to address two major vulnerabilities. Two critical flaw ...
-
Daily CyberSecurity
Under Active Attack: Critical 9.8 CVSS Tutor LMS Pro Flaw Exploited in the Wild for Full Site Takeover
A high-severity vulnerability has been uncovered in Tutor LMS Pro, a popular WordPress plugin used by over 30,000 active sites to manage online courses. The flaw, tracked as CVE-2026-0953, carries a C ...
-
Daily CyberSecurity
Home Network Alert: TP-Link Patches RCE Vulnerability in Archer AXE75 Routers
TP-Link has issued an urgent security advisory for users of its high-performance Archer AXE75 routers. A newly discovered command injection flaw, tracked as CVE-2025-15568, could allow attackers to se ...
-
Daily CyberSecurity
Kubernetes Security Alert: “Ingress-Nginx” Injection Flaw Risks Cluster-Wide Secret Exposure
A critical security vulnerability has been identified in ingress-nginx, the widely used Ingress controller for Kubernetes. Tracked as CVE-2026-3288 with a high-severity CVSS score of 8.8, the flaw cen ...
-
TheCyberThrone
CISA KEV Catalog Update – March 9 2026
March 10, 2026CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog today, based on evidence of active exploitationCVE-2026-1603 — Ivanti Endpoint Manager (EPM) ...
-
Daily CyberSecurity
CVE-2026-0866: Malformed ZIP Headers Allow Malware to Slip Past EDR Scanners
A newly detailed vulnerability, CVE-2026-0866, is highlighting a fundamental blind spot in how many Antivirus (AV) and Endpoint Detection and Response (EDR) tools handle compressed files. By strategic ...
-
Daily CyberSecurity
Critical 9.8 CVSS Flaws Expose SICK Lector Scanners to Hijacking
In a significant update for the industrial automation sector, SICK PSIRT has issued a high-priority security advisory regarding two critical vulnerabilities affecting the Lector85x and Lector83x produ ...