CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
seclists.org
CVE-2025-32978 - Quest KACE SMA Unauthenticated License Replacement
Full Disclosure mailing list archives From: Seralys Research Team via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 23 Jun 2025 22:48:48 +0000 Seralys Security Advisory | https://www.sera ... Read more
-
seclists.org
CVE-2025-32977 - Quest KACE Unauthenticated Backup Upload
Full Disclosure mailing list archives From: Seralys Research Team via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 23 Jun 2025 22:47:23 +0000 Seralys Security Advisory | https://www.sera ... Read more
-
seclists.org
CVE-2025-32976 - Quest KACE SMA 2FA Bypass
Full Disclosure mailing list archives From: Seralys Research Team via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 23 Jun 2025 22:44:34 +0000 Seralys Security Advisory | https://www.sera ... Read more
-
seclists.org
CVE-2025-32975 - Quest KACE SMA Authentication Bypass
Full Disclosure mailing list archives From: Seralys Research Team via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 23 Jun 2025 22:42:51 +0000 Seralys Security Advisory | https://www.sera ... Read more
-
The Hacker News
China-linked Salt Typhoon Exploits Critical Cisco Vulnerability to Target Canadian Telecom
Cyber Espionage / Chinese Hackers The Canadian Centre for Cyber Security and the U.S. Federal Bureau of Investigation (FBI) have issued an advisory warning of cyber attacks mounted by the China-linked ... Read more
-
Cyber Security News
Notepad++ Vulnerability Let Attacker Gains Complete System Control – PoC Released
A severe privilege escalation vulnerability has been discovered in Notepad++ version 8.8.1, potentially exposing millions of users worldwide to complete system compromise. The flaw, designated CVE-202 ... Read more
-
Daily CyberSecurity
Critical Convoy Flaw (CVE-2025-52562, CVSS 10.0): Unauthenticated Remote Code Execution on KVM Servers!
A newly disclosed vulnerability in Convoy, a modern KVM server management panel built for hosting providers, has received the highest possible severity rating—CVSS 10.0—and could allow unauthenticated ... Read more
-
Daily CyberSecurity
From Bypass to Root: Mandiant Red Team Exploits CVE-2025-2171 and CVE-2025-2172 in Aviatrix Cloud Controller
Mandiant successfully breached a fully patched instance of the Aviatrix Controller—a central component in Software-Defined Networking (SDN) architectures—by chaining together multiple vulnerabilities ... Read more
-
Daily CyberSecurity
No Patch, Full Exploit: CVSS 9.9 RCE & IDOR Flaws in InnoShop eCommerce Platform
Security researcher TheHiker disclosured three serious vulnerabilities in InnoShop, an open-source eCommerce system built on Laravel 12. These issues—ranging from insecure direct object references (ID ... Read more
-
TheCyberThrone
CVE-2025-5777 – Critical Citrix NetScaler Vulnerability
CVE-2025-5777 is a critical out-of-bounds read vulnerability discovered in Citrix NetScaler ADC and NetScaler Gateway. This flaw allows unauthenticated remote attackers to access sensitive memory cont ... Read more