CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
cert.pl
Vulnerability in WEBCON BPS software
Vulnerability in WEBCON BPS software CVE ID CVE-2026-1630 Publication date 14 May 2026 Vendor WEBCON Product WEBCON BPS Vulnerable versions From 2026.1.1.45 below 2026.1.3.109From 2025.1.1.87 before 2 ...
-
cert.pl
Vulnerabilities in Comarch ERP Optima software
Vulnerabilities in Comarch ERP Optima software CVE ID CVE-2025-68420 Publication date 14 May 2026 Vendor Comarch Product ERP Optima Vulnerable versions All before 2026.4 Vulnerability type (CWE) Incor ...
-
CybersecurityNews
Critical GitLab Vulnerabilities Enables XSS and Unauthenticated DoS Attacks
Threat actors are constantly hunting for infrastructure weaknesses, and a newly discovered batch of vulnerabilities in GitLab just handed them a dangerous roadmap. On May 13, 2026, GitLab rolled out e ...
-
The Hacker News
PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure
Threat actors have been observed attempting to exploit a recently disclosed security vulnerability in PraisonAI, an open-source multi-agent orchestration framework, within four hours of public disclos ...
-
CybersecurityNews
Palo Alto PAN-OS 0-Day Exploited to Execute Arbitrary Code With Root Privileges on Firewalls
A critical vulnerability in Palo Alto Networks PAN-OS is putting enterprise firewalls at risk, allowing unauthenticated attackers to execute arbitrary code with root privileges. Tracked as CVE-2026-03 ...
-
cert.pl
Vulnerability in simdjson library
Vulnerability in simdjson library CVE ID CVE-2026-8295 Publication date 14 May 2026 Vendor simdjson Product simdjson Vulnerable versions All before 4.6.4 Vulnerability type (CWE) Integer Overflow or W ...
-
Daily CyberSecurity
Nginx Releases Critical Update: Six Vulnerabilities Patched in New Stable Version
The web infrastructure world received a major wake-up call today as nginx-1.30.1 was released to address a suite of six security vulnerabilities. These flaws range from high-severity arbitrary code ex ...
-
Daily CyberSecurity
Critical IKEv2 Buffer Overflow and CAS Bypass Hit Palo Alto PAN-OS
Palo Alto Networks has released a series of important security updates addressing multiple vulnerabilities across its PAN-OS software. The most alarming of these is a buffer overflow in IKEv2 processi ...
-
The Hacker News
Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation
An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has returned with two more zero-days involving a BitLocker bypass and a privilege escalation impacting Wind ...
-
CybersecurityNews
Langflow CVE-2026-33017 Exploited to Steal AWS Keys and Deploy NATS Worker
Attackers are now abusing a fresh Langflow vulnerability to quietly steal cloud keys and turn victim systems into workers for a new NATS based botnet. This campaign shows how a single exposed AI workf ...