CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
FreePBX Vulnerabilities Enables Authentication Bypass that Leads Remote Code Execution
FreePBX has addressed critical vulnerabilities enabling authentication bypass and remote code execution in its Endpoint Manager module. Discovered by Horizon3.ai researchers, these flaws affect teleph ...
-
The Hacker News
Amazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure
Dec 16, 2025Ravie LakshmananCloud Security / Vulnerability Amazon's threat intelligence team has disclosed details of a "years-long" Russian state-sponsored campaign that targeted Western critical i ...
-
CybersecurityNews
Critical ScreenConnect Vulnerability Let Attackers Expose Sensitive Configuration Data
ConnectWise has issued a security update for ScreenConnect™ to address a critical vulnerability that could enable attackers to expose sensitive configuration data and install untrusted extensions. The ...
-
The Hacker News
Fortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass
Dec 16, 2025Ravie LakshmananNetwork Security / Vulnerability Threat actors have begun to exploit two newly disclosed security flaws in Fortinet FortiGate devices, less than a week after public discl ...
-
security.nl
'Kritieke Fortinet-lekken 3 dagen na bekendmaking misbruikt bij aanvallen'
Twee kritieke kwetsbaarheden in verschillende Fortinet-producten zijn vorige week misbruikt bij aanvallen, drie dagen nadat ze bekend waren gemaakt. Dat meldt securitybedrijf Arctic Wolf. De twee beve ...
-
cert.pl
Vulnerabilities in WaveStore Server software
Vulnerabilities in WaveStore Server software CVE ID CVE-2025-65074 Publication date 16 December 2025 Vendor WaveStore Product WaveStore Server Vulnerable versions All before 6.44.44 Vulnerability type ...
-
Daily CyberSecurity
Industry Shockwave? Rumors Claim Samsung Will Discontinue All SATA SSDs Despite Company’s Denial
Samsung data breach Yesterday, we reported that video creator @MLID claimed Samsung is planning to gradually phase out its SATA-based solid-state drive products. The information was reportedly corrobo ...
-
The Hacker News
React2Shell Vulnerability Actively Exploited to Deploy Linux Backdoors
The security vulnerability known as React2Shell is being exploited by threat actors to deliver malware families like KSwapDoor and ZnDoor, according to findings from Palo Alto Networks Unit 42 and NTT ...
-
CybersecurityNews
Critical FortiGate Devices SSO Vulnerabilities Actively Exploited in the Wild
An active intrusion is targeting critical authentication bypass vulnerabilities in Fortinet’s FortiGate appliances and related products. Threat actors are exploiting CVE-2025-59718 and CVE-2025-59719 ...
-
seclists.org
[KIS-2025-08] 1C-Bitrix <= 25.100.500 (Translate Module) Remote Code Execution Vulnerability
Full Disclosure mailing list archives From: Egidio Romano <n0b0d13s () gmail com> Date: Mon, 15 Dec 2025 16:56:09 +0100 ------------------------------------------------------------------------------ 1 ...