CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting
A flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim's project hijack the victim's machine learning model upload and run code inside Google's serving infrastr ...
-
security.nl
Cyberagentschap VS waarschuwt voor actief misbruikt LiteSpeed cPanel-lek
Het Amerikaanse cyberagentschap CISA waarschuwt voor actief misbruik van een kwetsbaarheid in de LiteSpeed cPanel-plug-in waardoor een aanvaller zijn rechten kan verhogen naar die van root. Op 1 juni ...
-
cert.pl
Vulnerability in jansi library
Vulnerability in jansi library CVE ID CVE-2026-8484 Publication date 16 June 2026 Vendor FuseSource Product jansi Vulnerable versions All through 2.4.3 Vulnerability type (CWE) Heap-based Buffer Overf ...
-
The Hacker News
Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week
Bad actors are exploiting multiple security vulnerabilities in Fortinet FortiSandbox, according to threat intelligence firm Defused Cyber. In a post shared on X, the company said it has observed explo ...
-
security.nl
'Kritiek lek in Fortinet FortiSandbox na aantal dagen al misbruikt bij aanvallen'
Een kritieke kwetsbaarheid in Fortinet FortiSandbox is een aantal dagen na de bekendmaking al misbruikt bij aanvallen, zo meldt securitybedrijf Defused. Fortinet kwam op 9 juni met beveiligingsupdates ...
-
The Hacker News
China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth
Cybersecurity researchers have flagged two previously undocumented Windows variants of what was believed to be a Linux-only backdoor called SprySOCKS. "The Windows variants discovered are internally m ...
-
security.nl
Cisco dicht actief misbruikt Catalyst SD-WAN-lek dat aanvaller root maakt
Cisco is met een beveiligingsupdate gekomen voor een actief misbruikte kwetsbaarheid in de Catalyst SD-WAN Manager waardoor een geauthenticeerde aanvaller root kan worden. Het probleem (CVE-2026-20262 ...
-
The Cyber Express
Critical SearchLeak Flaw in Microsoft 365 Copilot Exposed Sensitive Enterprise Data
A newly disclosed SearchLeak vulnerability in Microsoft 365 Copilot Enterprise exposed a critical pathway for attackers to steal sensitive organizational data through a specially crafted URL. The flaw ...
-
The Hacker News
Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw
Cisco has released security updates for a medium-severity security flaw in Catalyst SD-WAN Manager that has come under active exploitation in the wild. The vulnerability, tracked as CVE-2026-20262, ca ...
-
The Hacker News
CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a security flaw impacting LiteSpeed cPanel Plugin to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civ ...