CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Google Warns of WinRAR Vulnerability Exploited to Gain Control Over Windows System
A critical security flaw in WinRAR, one of the most widely used file compression tools for Windows, has become a favorite weapon for attackers seeking unauthorized access to computer systems. The vuln ...
-
The Hacker News
Fortinet Patches CVE-2026-24858 After Active FortiOS SSO Exploitation Detected
Fortinet has begun releasing security updates to address a critical flaw impacting FortiOS that has come under active exploitation in the wild. The vulnerability, assigned the CVE identifier CVE-2026- ...
-
Daily CyberSecurity
Sandbox Shattered: Critical n8n Flaw (CVSS 9.9) Allows Remote Code Execution
Security researcher Natan Nehorai of the JFrog Security Research Team has uncovered a critical Remote Code Execution (RCE) vulnerability in n8n, the popular fair-code workflow automation platform used ...
-
Daily CyberSecurity
HPE Aruba Patches High-Severity RCE and OpenSSL Flaws
HPE Aruba Networking has released a critical security advisory urging administrators to patch their Fabric Composer software immediately. The update addresses a trio of vulnerabilities, including a da ...
-
Daily CyberSecurity
Pre-Auth RCE Risk: OpenSSL Patches High-Severity Stack Overflow (CVE-2025-15467)
The maintainers of OpenSSL, the cryptographic library that underpins a vast portion of the secure web, have released a sweeping security update to address a dozen vulnerabilities ranging from memory c ...
-
Daily CyberSecurity
Under Attack: Critical Fortinet Auth Bypass (CVE-2026-24858) Exploited in the Wild
Fortinet has issued an urgent warning regarding a critical vulnerability affecting its core network security platforms, including FortiOS, FortiManager, and FortiAnalyzer. The flaw, tracked as CVE-202 ...
-
Daily CyberSecurity
Chrome Patches High-Severity Background Fetch Flaw (CVE-2026-1504)
Google has rolled out an important update for the Chrome Stable channel, pushing version 144.0.7559.109/110 to Windows and Mac users (and 144.0.7559.109 for Linux) to address a single, high-severity s ...
-
CybersecurityNews
Critical Vulnerability in VM2 Sandbox Library for Node.js Let Attackers run Untrusted Code
A critical sandbox escape vulnerability has been identified in vm2. This widely used Node.js library provides sandbox isolation for executing untrusted code. The flaw, tracked as CVE-2026-22709 (GHSA- ...
-
TheCyberThrone
CVE-2026-24858: Fortinet FortiCloud SSO Zero-Day Under Active Exploitation
January 28, 2026A critical authentication bypass vulnerability, CVE-2026-24858, impacts multiple Fortinet products via flawed FortiCloud SSO controls. Fortinet confirmed active exploitation by malicio ...
-
Daily CyberSecurity
Router Takeover: High-Severity Command Injection Flaw Hits TP-Link Archer MR600
TP-Link has issued a security advisory for its popular Archer MR600 4G+ LTE router, warning of a high-severity vulnerability that could allow attackers to seize control of the device. The flaw, tracke ...