Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2024-33533 to 33536: Zimbra Users at Risk of XSS and LFI Attacks
Zimbra Collaboration, a widely adopted email and collaboration platform disclosed three new security vulnerabilities. These flaws, identified as CVE-2024-33533, CVE-2024-33535, and CVE-2024-33536, imp ... Read more
-
Dark Reading
SolarWinds: Critical RCE Bug Requires Urgent Patch
Source: SOPA Images Limited via Alamy Stock PhotoSolarWinds is urging its customers to patch a critical vulnerability that was discovered in its Web Help Desk platform, tracked as CVE-2024-28986.This ... Read more
-
Zero Day Initiative
CVE-2024-38213: Copy2Pwn Exploit Evades Windows Web Protections
Zero Day Initiative threat researchers discovered CVE-2024-38213, a simple and effective way to bypass Windows mark-of-the-web protections leading to remote code execution.In March 2024, Trend Micro’s ... Read more
-
BleepingComputer
Microsoft disables BitLocker security fix, advises manual mitigation
Microsoft has disabled a fix for a BitLocker security feature bypass vulnerability due to firmware incompatibility issues that were causing patched Windows devices to go into BitLocker recovery mode. ... Read more
-
TheCyberThrone
IBM fixes several QRadar vulnerabilities
IBM recently disclosed critical vulnerabilities affecting its QRadar Suite Software and IBM Cloud Pak for Security. On successful exploitation, it could allow attackers to execute arbitrary code remot ... Read more
-
The Hacker News
SolarWinds Releases Patch for Critical Flaw in Web Help Desk Software
Enterprise Security / Vulnerability SolarWinds has released patches to address a critical security vulnerability in its Web Help Desk software that could be exploited to execute arbitrary code on susc ... Read more
-
Help Net Security
Critical RCE bug in SolarWinds Web Help Desk fixed (CVE-2024-28986)
SolarWinds has fixed a critical vulnerability (CVE-2024-28986) in its Web Help Desk (WHD) solution that may allow attackers to run commands on the host machine. “While it was reported as an unauthenti ... Read more
-
Cybersecurity News
Windows TCP/IP Vulnerability CVE-2024-38063: Researchers Hold Back Exploit Details Due to High Risk
In a recent August Patch Tuesday, Microsoft urgently addressed a critical security vulnerability within the Windows TCP/IP stack, identified as CVE-2024-38063. With a CVSS score of 9.8, this flaw has ... Read more
-
Cyber Security News
Vulnerability in Palo Alto Networks Prisma Access Browser Let Attackers Trigger RCE
Palo Alto Networks has issued a high-severity security update for the Prisma Access Browser, addressing multiple vulnerabilities discovered in the underlying Chromium engine. This update, identified a ... Read more
-
Cyber Security News
Critical Vulnerabilities in IBM QRadar Lets Attackers Trigger Arbitrary Code Remotely
IBM has issued a security bulletin highlighting multiple vulnerabilities in its QRadar Suite Software. These vulnerabilities, affecting various components, have been addressed in the latest software r ... Read more