CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Cyber Express
Microsoft Issues Emergency Patch for Critical WSUS Remote Code Execution Flaw (CVE-2025-59287)
Microsoft has released an urgent out-of-band security update to address a severe remote code execution (RCE) vulnerability in Windows Server Update Services (WSUS). The flaw, tracked as CVE-2025-59287 ...
-
cert.pl
Vulnerability in Studio Fabryka DobryCMS software
Vulnerability in Studio Fabryka DobryCMS software CVE ID CVE-2025-8536 Publication date 24 October 2025 Vendor Studio Fabryka Product DobryCMS Vulnerable versions 1.x and 2.x Vulnerability type (CWE) ...
-
Help Net Security
Microsoft blocks risky file previews in Windows File Explorer
Along with fixing many code-based vulnerabilities, the October 2025 Windows updates also change how File Explorer handles files downloaded from the internet. The change affects the file management too ...
-
security.nl
Microsoft komt met noodpatch voor kritiek lek in Windows Server
Microsoft heeft een noodpatch uitgebracht om een kritieke kwetsbaarheid in Windows Server "volledig" te patchen. Proof-of-concept exploitcode is inmiddels op internet beschikbaar en Microsoft verwacht ...
-
The Cyber Express
SessionReaper Exploits Erupt as Magento Sites Lag on Patching
Six weeks after Adobe shipped an emergency fix, attackers have begun weaponizing SessionReaper — and most Magento stores still stand exposed. Security firm Sansec’s forensics team said it blocked hund ...
-
CybersecurityNews
Microsoft Releases Emergency Patch For Windows Server Update Service RCE Vulnerability
Microsoft has rolled out an out-of-band emergency patch for a remote code execution (RCE) vulnerability affecting the Windows Server Update Services (WSUS). Identified as CVE-2025-59287, the issue ste ...
-
BleepingComputer
Windows Server emergency patches fix WSUS bug with PoC exploit
Microsoft has released out-of-band (OOB) security updates to patch a critical-severity Windows Server Update Service (WSUS) vulnerability with publicly available proof-of-concept exploit code. WSUS is ...
-
security.nl
WordPress-sites aangevallen via kritiek beveiligingslek in plug-ins
WordPress-sites zijn het doelwit van een aanval waarbij misbruik wordt gemaakt van kritieke kwetsbaarheden in twee plug-ins genaamd GutenKit en Hunk Companion. Via de beveiligingslekken kan een ongeau ...
-
cert.pl
Vulnerability in Request Tracker software
Vulnerability in Request Tracker software CVE ID CVE-2025-9158 Publication date 24 October 2025 Vendor Best Practical Product Request Tracker Vulnerable versions From 5.0.4 through 5.0.8 and from 6.0. ...
-
CybersecurityNews
Bitter APT Hackers Exploit WinRAR Zero-Day Via Weaponized Word Documents to Steal Sensitive Data
The Bitter APT group, also tracked as APT-Q-37 and known in China as 蔓灵花, has launched a sophisticated cyberespionage campaign targeting government agencies, military installations, and critical infra ...