CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Cyber Express
Critical Chrome Flaw CVE‑2025‑9132 Exposes Browsers to Remote Code Execution
The Hong Kong Computer Emergency Response Team Coordination Center issued an alert regarding a remote code execution flaw in Google Chrome. The Chrome team reported the same vulnerability. The Chrome ...
-
cert.pl
Vulnerabilities in OpenSolution Quick.CMS and Quick.CMS.Ext software
Vulnerabilities in OpenSolution Quick.CMS and Quick.CMS.Ext software CVE ID CVE-2025-54172 Publication date 20 August 2025 Vendor OpenSolution Product Quick.CMS Vulnerable versions 6.8 Vulnerability t ...
-
Help Net Security
Exploit for critical SAP Netweaver flaws released (CVE-2025-31324, CVE-2025-42999)
A working exploit concatenating two critical SAP Netweaver vulnerabilities (CVE-2025-31324, CVE-2025-42999) that have been previously exploited in the wild has been made public by VX Underground, Onap ...
-
CybersecurityNews
Critical Namespace Injection Vulnerability in Kubernetes Capsule Let Attackers Inject Arbitrary Labels
A critical security vulnerability has been identified in Kubernetes Capsule v0.10.3 and earlier versions, allowing authenticated tenant users to inject arbitrary labels into system namespaces and bypa ...
-
CybersecurityNews
Hackers Exploiting Apache ActiveMQ Vulnerability to Gain Access to Cloud Linux Systems
A sophisticated campaign uncovered where adversaries are exploiting CVE-2023-46604, a critical remote code execution vulnerability in Apache ActiveMQ, to compromise cloud-based Linux systems. In this ...
-
CybersecurityNews
Paper Werewolf Exploiting WinRAR Zero‑Day Vulnerability to Deliver Malware
Cybersecurity researchers have uncovered a sophisticated campaign by the Paper Werewolf threat actor group, also known as GOFFEE, targeting Russian organizations through the exploitation of critical v ...
-
security.nl
Aanvallers patchen Apache ActiveMQ-lek na compromitteren van server
Aanvallers maken misbruik van een kritieke kwetsbaarheid in Apache ActiveMQ om Linux-servers te compromitteren en patchen het lek zodra ze binnen zijn. Dat stelt securitybedrijf Red Canary in een anal ...
-
The Cyber Express
He Hacked McDonald’s for Free Nuggets — What He Found Was Far More Dangerous
In a world where digital infrastructures run global empires, even the biggest names in the fast-food industry aren’t immune to security blunders. That’s exactly what one independent researcher discove ...
-
CybersecurityNews
Chrome High-Severity Vulnerability Let Attackers Execute Arbitrary Code
Google has released an emergency security update for Chrome to address a critical vulnerability that could allow attackers to crash the browser or execute arbitrary code on affected systems. The high- ...
-
Daily CyberSecurity
CVE-2025-54336 (CVSS 9.8): Critical Flaw in Plesk Obsidian Exposes Servers to Full Compromise
A newly disclosed security vulnerability in Plesk Obsidian, a widely used web hosting control panel, has been assigned CVE-2025-54336 with a CVSS severity score of 9.8. The flaw, which affects authent ...