Cyber Newsroom Feed

The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.

CVE News RSS Feed
  • Trend Micro
Jenkins Args4j CVE-2024-23897: Files Exposed, Code at Risk

Exploits & Vulnerabilities Jenkins, a popular open-source automation server, was discovered to be affected by a file read vulnerability, CVE-2024-23897. Jenkins, a popular open-source automation serve ... Read more

Published Date: Mar 19, 2024 (6 months ago)
CVE-2024-23897
  • cert.pl
Vulnerabilities in BMC Control-M software

CVE ID CVE-2024-1604 Publication date 18 March 2024 Vendor BMC Product Control-M Vulnerable versions from 9.0.20 before 9.0.20.238, from 9.0.21 before 9.0.21.201 Vulnerability type (CWE) Incorrect Aut ... Read more

Published Date: Mar 18, 2024 (6 months ago)
CVE-2024-1606 CVE-2024-1605 CVE-2024-1604
  • 0patch.com
Micropatches Released for Microsoft Outlook "MonikerLink" Remote Code Execution Vulnerability (CVE-2024-21413)

Update 7/31/2024: Additional exploitation variants for this vulnerability were subsequently discovered. Consequently, original micropatches were revoked and new micropatches issued to cover these new ... Read more

Published Date: Mar 15, 2024 (6 months ago)
CVE-2024-21413
  • Zero Day Initiative
CVE-2023-36049: Microsoft .NET CRLF Injection Arbitrary File Write/Deletion Vulnerability

None ... Read more

Published Date: Mar 06, 2024 (6 months, 1 week ago)
CVE-2023-36049
  • NVISO Labs
Covert TLS n-day backdoors: SparkCockpit & SparkTar

In early 2024, Ivanti’s Pulse Secure appliances suffered from wide-spread exploitation through the then reported vulnerabilities CVE-2023-46805 & CVE-2024-21887. Amongst the many victims, a critical-s ... Read more

Published Date: Mar 01, 2024 (6 months, 2 weeks ago)
CVE-2024-21887 CVE-2023-46805
  • osintme.com
Examples of recent attacks against my website

“The Wordfence Web Application Firewall has blocked 467 attacks over the last 10 minutes. Wordfence is blocking these attacks, and we’re sending this notice to make you aware that there is a higher vo ... Read more

Published Date: Feb 29, 2024 (6 months, 2 weeks ago)
CVE-2019-19985
  • cert.pl
Vulnerability in Laragon software

CVE ID CVE-2024-0864 Publication date 29 February 2024 Vendor Leo Khoa Product Laragon Vulnerable versions All Vulnerability type (CWE) Improper Input Validation (CWE-20) Report source Own research De ... Read more

Published Date: Feb 29, 2024 (6 months, 3 weeks ago)
CVE-2024-0864
  • 0patch.com
Micropatches Released for Microsoft Outlook Information Disclosure Vulnerability (CVE-2023-35636)

In December 2023, still-Supported Microsoft Outlook versions got an official patch for CVE-2023-35636, a vulnerability that allowed an attacker to coerce user's Outlook to authenticate to attacker's r ... Read more

Published Date: Feb 23, 2024 (6 months, 3 weeks ago)
CVE-2023-35636
  • huntress.com
SlashAndGrab: ScreenConnect Post-Exploitation in the Wild (CVE-2024-1709 & CVE-2024-1708) | Huntress

Table of Contents: Adversaries Deploying RansomwareAdversaries EnumeratingAdversary Cryptocurrency MinersAdversaries Installing Additional Remote AccessDownloading Tools and PayloadsAdversaries Droppi ... Read more

Published Date: Feb 23, 2024 (6 months, 3 weeks ago)
CVE-2024-1709 CVE-2024-1708
  • huntress.com
Understanding the ConnectWise ScreenConnect CVE-2024-1709 & CVE-2024-1708 | Huntress

On February 19, 2024, ConnectWise published a security advisory for ScreenConnect version 23.9.8, referencing two vulnerabilities and software weaknesses. The same day, Huntress researchers worked to ... Read more

Published Date: Feb 21, 2024 (6 months, 4 weeks ago)

Filters

Showing 10 of 1098 Results