CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Supply Chain Alert: Critical Code Injection Flaw (CVSS 9.3) in Orval
Developers relying on orval to generate type-safe clients from OpenAPI specifications are being urged to update immediately following the discovery of a critical code injection vulnerability. The flaw ...
-
The Register
AI networking startup Upscale scores $200M to challenge Nvidia's NVSwitch
AI networking startup Upscale AI on Wednesday announced it has raised $200 million in Series A funding to challenge Nvidia's dominance of switches for rack-scale AI systems, putting it in competition ...
-
Daily CyberSecurity
CVE-2026-0622: Hardcoded Secret Exposes Open5GS 5G Core Networks
A critical security flaw has been uncovered in Open5GS, a popular open-source implementation of 5G core network functions. The vulnerability, tracked as CVE-2026-0622, stems from a classic, yet devast ...
-
BleepingComputer
Chainlit AI framework bugs let hackers breach cloud environments
Two high-severity vulnerabilities in Chainlit, a popular open-source framework for building conversational AI applications, allow reading any file on the server and leaking sensitive information. The ...
-
BleepingComputer
Cisco fixes Unified Communications RCE zero day exploited in attacks
Cisco has fixed a critical Unified Communications and Webex Calling remote code execution vulnerability, tracked as CVE-2026-20045, that has been actively exploited as a zero-day in attacks. Tracked a ...
-
seclists.org
Re: Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)
Full Disclosure mailing list archives From: Wade Sparks <wsparks () vulncheck com> Date: Wed, 21 Jan 2026 11:29:03 -0500 Hello Yuffie, Upon further investigation, the VulnCheck CNA determined that the ...
-
Help Net Security
Fully patched FortiGate firewalls are getting compromised via CVE-2025-59718?
CVE-2025-59718, a critical authentication bypass flaw that attackers exploited in December 2025 to compromise FortiGate appliances, appears to persist in newer, purportedly fixed releases of the under ...
-
Help Net Security
RCE flaw in Cisco enterprise communications products probed by attackers (CVE-2026-20045)
Cisco has fixed a critical remote code execution vulnerability (CVE-2026-20045) in some of its unified communications solutions that’s being targeted by attackers in the wild, the company announced on ...
-
BleepingComputer
Fortinet admins report patched FortiGate firewalls getting hacked
Fortinet customers are seeing attackers exploiting a patch bypass for a previously fixed critical FortiGate authentication vulnerability (CVE-2025-59718) to hack patched firewalls. One of the affected ...
-
The Hacker News
Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws
Zoom and GitLab have released security updates to resolve a number of security vulnerabilities that could result in denial-of-service (DoS) and remote code execution. The most severe of the lot is a c ...