CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
seclists.org
Re: Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)
Full Disclosure mailing list archives From: Marco Ermini via Fulldisclosure <fulldisclosure () seclists org> Date: Fri, 23 Jan 2026 18:41:47 +0000 Hello everyone, Kindly let me introduce myself. This ...
-
seclists.org
SEC Consult SA-20260126-2 :: UART Leaking Sensitive Data in dormakaba registration unit 9002 (PIN pad)
Full Disclosure mailing list archives SEC Consult SA-20260126-2 :: UART Leaking Sensitive Data in dormakaba registration unit 9002 (PIN pad) From: SEC Consult Vulnerability Lab via Fulldisclosure <ful ...
-
seclists.org
SEC Consult SA-20260126-1 :: Multiple Critical Vulnerabilities in dormakaba Access Manager
Full Disclosure mailing list archives SEC Consult SA-20260126-1 :: Multiple Critical Vulnerabilities in dormakaba Access Manager From: SEC Consult Vulnerability Lab via Fulldisclosure <fulldisclosure ...
-
seclists.org
SEC Consult SA-20260126-0 :: Multiple Critical Vulnerabilities in dormakaba Kaba exos 9300
Full Disclosure mailing list archives SEC Consult SA-20260126-0 :: Multiple Critical Vulnerabilities in dormakaba Kaba exos 9300 From: SEC Consult Vulnerability Lab via Fulldisclosure <fulldisclosure ...
-
Daily CyberSecurity
OpenAI’s Big Ad Gamble: Why ChatGPT Ads Cost 3x More Than Meta With Way Less Data
OpenAI is currently orchestrating the strategic integration of advertisements within ChatGPT. Consequently, users of the complimentary tier and the ChatGPT Go subscription will soon encounter promotio ...
-
Daily CyberSecurity
CVSS 9.8 Sandbox Escape: Critical vm2 Flaw Exposes Millions of Apps
A critical security vulnerability has been unearthed in vm2, a highly popular sandbox library for Node.js used by millions of developers to run untrusted code. Tracked as CVE-2026-22709, the flaw carr ...
-
Daily CyberSecurity
Incomplete Fix: High-Severity React Server Components DoS Flaw (CVE-2026-23864)
The team behind React, the JavaScript library that powers a vast swath of the modern web, has issued an urgent security advisory warning that previous attempts to patch a Denial of Service (DoS) vulne ...
-
CybersecurityNews
Microsoft Office Zero-day Vulnerability Actively Exploited in Attacks
Microsoft released emergency out-of-band security updates on January 26, 2026, to address CVE-2026-21509, a zero-day security feature bypass vulnerability in Microsoft Office that attackers are active ...
-
Daily CyberSecurity
High-Severity Flaw in Western Digital Installer Opens Door to Code Execution
Western Digital, a titan in the data storage industry, has rolled out a critical update for its widely used WD Discovery software after security researchers uncovered a dangerous flaw in its installer ...
-
Daily CyberSecurity
Stealth in Script: “PeckBirdy” Framework Powers New Wave of China-Aligned Attacks
A sophisticated new cyberweapon has been spotted in the arsenals of China-aligned Advanced Persistent Threat (APT) groups, marking a significant evolution in how state-sponsored actors evade detection ...