CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
A critical security flaw impacting Oracle E-Business Suite has come under active exploitation in the wild, according to Defused Cyber. The vulnerability, tracked as CVE-2026-46817 (CVSS score: 9.8), r ...
-
TheCyberThrone
CVE-2026-55200: Critical libssh2 Flaw Opens Remote Code Execution Path
The SSH protocol is one of the most trusted pillars of secure remote communication. But when the library underneath it breaks, the blast radius can be significant.A newly disclosed vulnerability, libs ...
-
The Hacker News
⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More
This week was a reminder that attackers do not always need big tricks. One small mistake, one old access path, one missed patch, and suddenly the door is open. The noise is not all noise, either. Foru ...
-
security.nl
Kritiek lek in Oracle E-Business Suite actief misbruikt bij aanvallen
Een kritieke kwetsbaarheid in Oracle E-Business Suite wordt actief misbruikt bij aanvallen, zo stelt cybersecuritybedrijf Defused. Oracle kwam op 28 mei met updates voor het probleem, aangeduid als CV ...
-
cert.pl
Vulnerability in libxml2 software
Vulnerability in libxml2 software CVE ID CVE-2026-11979 Publication date 29 June 2026 Vendor xmlsoft Product libxml2 Vulnerable versions All through 2.15.3 Vulnerability type (CWE) Stack-based Buffer ...
-
cert.pl
Vulnerability in SzafirHost software
Vulnerability in SzafirHost software CVE ID CVE-2026-13165 Publication date 29 June 2026 Vendor Krajowa Izba Rozliczeniowa Product SzafirHost Vulnerable versions All before 1.2.2 Vulnerability type (C ...
-
The Hacker News
Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse
A Russian advanced persistent threat (APT) group has continued to evolve and expand its malware arsenal as part of its ongoing cyber onslaught against Ukraine throughout 2025. Slovakian cybersecurity ...
-
cert.pl
Vulnerabilities in gzip software
Vulnerabilities in gzip software CVE ID CVE-2026-41991 Publication date 29 June 2026 Vendor GNU Product gzip Vulnerable versions All through 1.14 Vulnerability type (CWE) Insecure Temporary File (CWE- ...
-
The Hacker News
Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw
A public proof-of-concept is now out for CVE-2026-55200, a critical flaw in libssh2 that lets a malicious or compromised SSH server trigger memory corruption on a connecting client, with possible code ...
-
Huntress
Defence Impairment Olympics
Acknowledgements: Special thanks to Adrian Garcia, Amelia Casley, Olly Maxwell and Anton Ovrutsky for their contributions to this investigation and write-up.BackgroundAt Huntress, we have visibility i ...