CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
seclists.org
APPLE-SA-08-20-2025-1 iOS 18.6.2 and iPadOS 18.6.2
Full Disclosure mailing list archives From: Apple Product Security via Fulldisclosure <fulldisclosure () seclists org> Date: Wed, 20 Aug 2025 17:08:52 -0700 -----BEGIN PGP SIGNED MESSAGE----- Hash: SH ... Read more
-
The Register
Salt Typhoon used dozens of domains, going back five years. Did you visit one?
Security researchers have uncovered dozens of domains used by Chinese espionage crew Salt Typhoon to gain stealthy, long-term access to victim organizations going back as far as 2020. In a Monday repo ... Read more
-
CybersecurityNews
Progress OpenEdge AdminServer Vulnerability Let Attackers Execute Remote Code
A critical security vulnerability has been discovered in Progress OpenEdge, a platform for developing and deploying business applications. The flaw, identified as CVE-2025-7388, allows for remote code ... Read more
-
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Zero-Day in Sitecore Exploited to Deploy WEEPSTEEL Malware
A critical zero-day vulnerability (CVE-2025-53690) is being actively exploited in Sitecore. This flaw, originating from old, insecure keys, allows hackers to achieve Remote Code Execution (RCE) via Vi ... Read more
-
security.nl
Kwetsbaarheid in Apache Jackrabbit maakt het uitvoeren van code op servers mogelijk
Een kwetsbaarheid (CVE-2025-58782) is ontdekt in Apache Jackrabbit, een populaire opensource-contentrepository die veel wordt gebruikt door contentmanagementsystemen en webapplicaties. De kwetsbaarhei ... Read more
-
CrowdStrike.com
MURKY PANDA: A Trusted-Relationship Threat in the Cloud
Since late 2024, CrowdStrike Counter Adversary Operations has observed significant activity conducted by MURKY PANDA, a China-nexus adversary that has targeted government, technology, academic, legal, ... Read more
-
CybersecurityNews
PgAdmin Vulnerability Lets Attackers Gain Unauthorised Account Access
A significant security flaw has been discovered in pgAdmin, the widely used open-source administration and development platform for PostgreSQL databases. The vulnerability, tracked as CVE-2025-9636, a ... Read more
-
CybersecurityNews
PoC Exploit Released for ImageMagick RCE Vulnerability – Update Now
A proof-of-concept (PoC) exploit has been released for a critical remote code execution (RCE) vulnerability in ImageMagick 7’s MagickCore subsystem, specifically affecting the blob I/O (BlobStream) im ... Read more
-
The Register
CISA sounds alarm over TP-Link wireless routers under attack
Infosec in brief The US Cybersecurity and Infrastructure Security Agency (CISA) has said two flaws in routers made by Chinese networking biz TP-Link are under active attack and need to be fixed – but ... Read more
-
cert.pl
Vulnerability in ITCube CRM software
Vulnerability in ITCube CRM software CVE ID CVE-2025-5993 Publication date 08 September 2025 Vendor ITCube Software Product ITCube CRM Vulnerable versions From 2023.2 through 2025.2 Vulnerability type ... Read more