Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
CISA warns of more Palo Alto Networks bugs exploited in attacks
CISA warned today that two more critical security vulnerabilities in Palo Alto Networks' Expedition migration tool are now actively exploited in the wild. Attackers can use the two unauthenticated com ... Read more
-
Dark Reading
Varonis Warns of Bug Discovered in PostgreSQL PL/Perl
Source: tofino via Alamy Stock PhotoResearchers at Varonis discovered a vulnerability within Postgres language extension PL/Perl, allowing a user to set arbitrary environment variables in PostgreSQL s ... Read more
-
InfoSec Write-ups
The Story of Finding and Mitigating CVE-2021–42063 Vulnerability in Lenovo’s SAP Knowledge…
In the world of cybersecurity, vulnerabilities can pose significant threats to organizations and their sensitive data. A recent discovery involving Lenovo’s SAP Knowledge Warehouse, specifically versi ... Read more
-
security.nl
WordPress.org forceert update wegens kritiek lek in Really Simple Security
Een kritieke kwetsbaarheid in Really Simple Security, een plug-in voor WordPress, maakt het mogelijk om websites op afstand over te nemen. Vanwege de impact heeft WordPress.org besloten om de update, ... Read more
-
cert.pl
Vulnerability in TCL Camera software
CVE ID CVE-2024-11136 Publication date 14 November 2024 Vendor TCL Product Camera Vulnerable versions v6.00.04.0067.3.0 Vulnerability type (CWE) Path Traversal (CWE-35) Report source Report to CERT Po ... Read more
-
cert.pl
Vulnerability in DInGO dLibra software
CVE ID CVE-2024-7124 Publication date 14 November 2024 Vendor Poznan Supercomputing and Networking Center Product DInGO dLibra Vulnerable versions From 6.0 before 6.3.20 Vulnerability type (CWE) Impro ... Read more
-
CVE-2021–20323 the XSS Vulnerability in Keycloak that affect many web application
Vulnerable URL:https.://xxx.nasa.gov/auth/realms/master/clients-registrations/defaultCVE Description:CVE-2021–20323 is a cross-site scripting (XSS) vulnerability discovered in Keycloak versions 10.0.0 ... Read more
-
TheCyberThrone
GitLab fixes High severity vulnerability CVE-2024-9693
GitLab has released patches to address a high-severity vulnerability that could grant unauthorized access to Kubernetes clusters.The most serious vulnerability tracked as CVE-2024-9693 with a CVSS sco ... Read more
-
The Cyber Express
Key ICS Vulnerabilities Identified in Latest CISA Advisories
The Cybersecurity and Infrastructure Security Agency (CISA) has recently issued a series of security advisories, shedding light on several critical vulnerabilities affecting Industrial Control Systems ... Read more
-
SentinelOne
The State of Cloud Ransomware in 2024
Overview Ransom attacks in the cloud are a perennially popular topic of discussion in the cloud security realm. Cloud services inherently provide an advantage over endpoint and web server-based servic ... Read more