CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Cyber Express
Microsoft Patch Tuesday June 2025: One Zero-Day, Nine High-risk Flaws Fixed
Microsoft’s Patch Tuesday updates for June 2025 include fixes for an actively exploited zero-day vulnerability and nine additional flaws at high risk of exploitation. In all, the Microsoft Patch Tuesd ... Read more
-
Cyber Security News
Windows Common Log File System Driver Vulnerability Let Attackers Escalate Privileges
A critical security vulnerability in the Windows Common Log File System Driver (CLFS) enables attackers to escalate their privileges to SYSTEM level access. The vulnerability, tracked as CVE-2025-3271 ... Read more
-
Cyber Security News
Microsoft Office Vulnerabilities Let Attackers Execute Remote Code
Multiple critical vulnerabilities in Microsoft Office could allow attackers to execute arbitrary code on affected systems. The vulnerabilities, tracked as CVE-2025-47162, CVE-2025-47953, CVE-2025-4716 ... Read more
-
CrowdStrike.com
How Falcon Next-Gen SIEM Protects Enterprises from VMware vCenter Attacks
Internet-facing assets are targeted for many reasons, such as to establish persistence, evade defensive capabilities, and access sensitive networks. According to the search engine Shodan, approximatel ... Read more
-
CrowdStrike.com
June 2025 Patch Tuesday: One Zero-Day and Nine Critical Vulnerabilities Among 66 CVEs
Microsoft has addressed 66 vulnerabilities in its June 2025 security update release. This month's patches include fixes for one actively exploited zero-day vulnerability and nine Critical vulnerabilit ... Read more
-
BleepingComputer
Brute-force attacks target Apache Tomcat management panels
A coordinated campaign of brute-force attacks using hundreds of unique IP addresses targets Apache Tomcat Manager interfaces exposed online. Tomcat is a popular open-source web server widely used by l ... Read more
-
Cyber Security News
New Secure Boot Bypass Vulnerability Let Attackers Install Malware in PCs and Servers Boot Process
A critical vulnerability has emerged that threatens the fundamental security of modern computing systems, allowing attackers to bypass Secure Boot protections and install malware directly into the boo ... Read more
-
Cyber Security News
Apache CloudStack Vulnerability Let Attackers Perform Privileged Actions
Multiple critical vulnerabilities in popular versions of the Apache CloudStack platform could allow attackers to perform privileged actions and compromise cloud infrastructure systems. The security ad ... Read more
-
Cyber Security News
CoreDNS Vulnerability Let Attackers Exhaust Server Memory Via Amplification Attack
A high-severity security vulnerability has been discovered in CoreDNS, one of the most widely used DNS servers in cloud-native environments, particularly within Kubernetes clusters. The flaw, designat ... Read more
-
Dark Reading
Mirai Botnets Exploit Flaw in Wazuh Security Platform
Source: Sleepyfellow via Alamy Stock PhotoTwo separate Mirai botnet campaigns are exploiting a critical flaw in a somewhat unlikely target.The Akamai Security Intelligence and Response Team recently o ... Read more