CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Register
Maximum-severity n8n flaw lets randos run your automation server
A maximum-severity bug in the popular automation platform n8n has left an estimated 100,000 servers wide open to complete takeover, courtesy of a flaw so bad it doesn't even require logging in. The vu ...
-
Help Net Security
PoC released for unauthenticated RCE in Trend Micro Apex Central (CVE-2025-69258)
Trend Micro has released a critical patch fixing several remotely exploitable vulnerabilities in Apex Central (on-premise), including a flaw (CVE-2025-69258) that may allow unauthenticated attackers t ...
-
CybersecurityNews
CISA Warns of Microsoft PowerPoint Code Injection Vulnerability Exploited in Attacks
CISA issued a critical alert regarding a code-injection vulnerability in Microsoft PowerPoint that poses a significant risk to organizations worldwide. The vulnerability, tracked as CVE-2009-0556, all ...
-
The Hacker News
Cisco Patches ISE Security Vulnerability After Public PoC Exploit Release
Jan 08, 2026Ravie LakshmananNetwork Security / Vulnerability Cisco has released updates to address a medium-severity security flaw in Identity Services Engine (ISE) and ISE Passive Identity Connecto ...
-
The Hacker News
Coolify Discloses 11 Critical Flaws Enabling Full Server Compromise on Self-Hosted Instances
Jan 08, 2026Ravie LakshmananVulnerability / Container Security Cybersecurity researchers have disclosed details of multiple critical-severity security flaws affecting Coolify, an open-source, self-h ...
-
CybersecurityNews
GitLab Patches Multiple Vulnerabilities that Enables Arbitrary Code Execution
GitLab has released emergency security patches for multiple versions of its platform, addressing eight vulnerabilities that could enable arbitrary code execution and unauthorized access in self-manage ...
-
CybersecurityNews
Linux Battery Utility Flaw Lets Hackers Bypass Authentication and Tamper System Settings
A critical security vulnerability has been discovered in TLP, a widely used Linux laptop battery optimization utility, allowing local attackers to bypass authentication controls and manipulate system ...
-
BleepingComputer
Cisco warns of Identity Service Engine flaw with exploit code
Cisco has patched a vulnerability in its Identity Services Engine (ISE) network access control solution, with public proof-of-concept exploit code, that can be abused by attackers with admin privilege ...
-
security.nl
VS meldt actief misbruik van kritieke kwetsbaarheid in HPE OneView
Aanvallers maken actief misbruik van een kritieke kwetsbaarheid in HPE OneView, wat zeer ernstige gevolgen voor organisaties kan hebben, zo meldt het Amerikaanse cyberagentschap CISA. De impact van de ...
-
The Cyber Express
New n8n Vulnerability (CVE-2026-21858) Allows Unauthenticated File Access and RCE
Cybersecurity researchers have disclosed a new critical flaw in the popular workflow automation platform n8n that could allow unauthenticated attackers to fully compromise vulnerable systems. The issu ...