CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CISA adds Two vulnerabilities to KEV catalog
April 29, 2026CISA has added two vulnerabilities to its Known Exploited Vulnerabilities catalog based on evidence of active exploitation — CVE-2024-1708, a ConnectWise ScreenConnect path traversal vul ...
-
Daily CyberSecurity
Checkmarx Falls Victim to Credential Harvesting Attack
Checkmarx, a global leader in application security testing, has disclosed a significant breach of its internal systems. The attack originated not from a direct assault, but through a sophisticated sup ...
-
Daily CyberSecurity
CISA Sounds the Alarm: State-Sponsored Hackers Weaponize New Windows and ScreenConnect Flaws
The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog, adding two high-stakes flaws that are currently being weaponized by state-sp ...
-
Daily CyberSecurity
Chrome Security Alert: Google Patches 30 Vulnerabilities in Massive Desktop Update
Google has released a significant security update for the Chrome stable channel, addressing 30 security fixes. The update, which brings the browser to version 147.0.7727.137/138 for Windows and Mac an ...
-
Daily CyberSecurity
Git Push to Root: AI-Augmented Research Uncovers Critical GitHub RCE (CVE-2026-3854)
Vulnerability overview | Image: Wiz Research Wiz Research has unveiled a critical security flaw (CVE-2026-3854) within GitHub’s internal git infrastructure. The vulnerability, remarkably simple to exe ...
-
The Hacker News
Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push
Cybersecurity researchers have disclosed details of a critical security vulnerability impacting GitHub.com and GitHub Enterprise Server that could allow an authenticated user to obtain remote code exe ...
-
CybersecurityNews
Critical GitHub.com and Enterprise Server RCE Vulnerability Enables Full Server Compromise
A critical remote code execution (RCE) vulnerability tracked as CVE-2026-3854 in GitHub’s internal git infrastructure that could have allowed any authenticated user to compromise backend servers, acce ...
-
CybersecurityNews
Microsoft Confirms Remote Desktop Warnings May Display Incorrectly After April Update
Microsoft has officially acknowledged a known issue in its April 2026 Windows 11 cumulative update: Remote Desktop Protocol (RDP) security warning dialogs may render incorrectly on certain system conf ...
-
CybersecurityNews
Critical LiteLLM SQL Injection Vulnerability Exploited in the Wild
A critical pre-authentication SQL injection vulnerability in LiteLLM, a widely used open-source AI gateway with over 22,000 GitHub stars, is actively being exploited in the wild. Tracked as CVE-2026-4 ...
-
cert.pl
Vulnerability in GNU nano software
Vulnerability in GNU nano software CVE ID CVE-2026-40556 Publication date 28 April 2026 Vendor GNU Product nano Vulnerable versions From 2.9.1 below 9.0 Vulnerability type (CWE) Incorrect Permission A ...