Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CVE-2024-21182: Oracle WebLogic Server Flaw Exploit Code Released
CVE-2024-21182 is a high-severity vulnerability identified in Oracle WebLogic Server. This security flaw affects specific versions of the software, namely Oracle WebLogic Server 12.2.1.4.0 and 14.1.1. ... Read more
-
The Hacker News
Chinese APT Exploits BeyondTrust API Key to Access U.S. Treasury Systems and Documents
Vulnerability / Incident Response The United States Treasury Department said it suffered a "major cybersecurity incident" that allowed suspected Chinese threat actors to remotely access some computers ... Read more
-
seclists.org
Multiple vulnerabilities in CTFd versions <= 3.7.4
Full Disclosure mailing list archives From: Blazej Adamczyk <blazej.adamczyk () gmail com> Date: Tue, 24 Dec 2024 12:28:40 +0100 ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ Multiple vulnerabili ... Read more
-
seclists.org
IBMi Navigator / CVE-2024-51464 / HTTP Security Token Bypass
Full Disclosure mailing list archives IBMi Navigator / CVE-2024-51464 / HTTP Security Token Bypass From: hyp3rlinx <apparitionsec () gmail com> Date: Fri, 27 Dec 2024 22:21:21 -0500 [+] Credits: John ... Read more
-
seclists.org
IBMi Navigator / CVE-2024-51463 / Server Side Request Forgery (SSRF)
Full Disclosure mailing list archives IBMi Navigator / CVE-2024-51463 / Server Side Request Forgery (SSRF) From: hyp3rlinx <apparitionsec () gmail com> Date: Fri, 27 Dec 2024 22:19:52 -0500 [+] Credit ... Read more
-
TheCyberThrone
CISA adds PaloAlto CVE-2024-3393 to its KEV Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) recently added CVE-2024-3393 to its Known Exploited Vulnerabilities (KEV) Catalog. This vulnerability affects Palo Alto Networks’ PAN-OS sof ... Read more
-
Cybersecurity News
CISA Warns of Actively Exploited Palo Alto Firewall Flaw (CVE-2024-3393)
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about an actively exploited vulnerability in Palo Alto Networks PAN-OS firewall software. This critical flaw, t ... Read more
-
Cybersecurity News
CVE-2024-11944: TrueNAS CORE Vulnerability Allows Unauthenticated Attacks
A critical vulnerability has been uncovered in TrueNAS CORE, the popular open-source network-attached storage (NAS) operating system. Tracked as CVE-2024-11944 and assigned a CVSS score of 7.5, this s ... Read more
-
Cybersecurity News
66,000 DrayTek Gateways Vulnerable to Remote Command Injection (CVE-2024-12987), PoC Published
Security researcher Netsecfish has discovered a command injection vulnerability, tracked as CVE-2024-12987, in the web management interface of popular DrayTek gateway devices. This flaw could enable a ... Read more
-
Cybersecurity News
Stealthy UEFI Bootkit Targets Windows Kernel, Raising Security Concerns
Security researchers NSG650 and Pdawg have unveiled a proof-of-concept UEFI bootkit that exploits a critical firmware function to compromise the Windows kernel during the boot process. This bootkit de ... Read more