CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Grafana Patches XSS (CVE-2025-6023) and Open Redirect (CVE-2025-6197) Flaws in Recent Security Release
Grafana Labs has released important security patches for multiple versions of its observability platform, addressing two significant vulnerabilities: a high-severity Cross-Site Scripting (XSS) vulnera ...
-
security.nl
Openbaar Ministerie koppelt digitale omgeving los van internet vanwege kwetsbaarheid
De digitale omgeving van het Openbaar Ministerie is gisteravond uit voorzorg losgekoppeld van het internet. Aanleiding hiervoor is een kwetsbaarheid in Citrix NetScaler. Dit meldt minister Van Weel va ...
-
CybersecurityNews
BIND 9 Vulnerabilities Expose Organizations to Cache Poisoning and DoS Attacks
Two critical vulnerabilities in the BIND 9 DNS resolver software are affecting organizations worldwide, with potential cache poisoning and denial-of-service attacks. The vulnerabilities, identified as ...
-
The Cyber Express
New Cisco Bugs Rated CVSS 10.0, Patch Immediately
Cisco has issued a new security advisory warning of newly discovered vulnerabilities in its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC), revealing serious security flaw ...
-
TheCyberThrone
CVE-2025-20337: Cisco ISE Critical RCE Vulnerability
Skip to content July 18, 2025SummaryCVE-2025-20337 is a critical remote code execution (RCE) vulnerability affecting Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE- ...
-
Daily CyberSecurity
GhostContainer: Kaspersky Uncovers Stealthy Backdoor Infiltrating Government & High-Tech Exchange Servers
In a recent incident response operation, Kaspersky Labs uncovered a highly sophisticated backdoor named GhostContainer, designed to infiltrate Microsoft Exchange infrastructure within government and h ...
-
Daily CyberSecurity
CVE-2025-34300 (CVSS 10): Critical RCE Flaw in Lighthouse Studio’s CGI Scripts Threatens Survey Servers Worldwide
A severe remote code execution (RCE) vulnerability has been discovered in Lighthouse Studio, a popular web-based survey platform developed by Sawtooth Software. The flaw—tracked as CVE-2025-34300 and ...
-
Daily CyberSecurity
Massistant: China’s New Mobile Forensics App Deepens Digital Surveillance
In an update to China’s expanding digital surveillance ecosystem, researchers at Lookout Threat Lab have uncovered a powerful mobile forensics application known as Massistant, believed to be a success ...
-
Daily CyberSecurity
ISC Warns of Cache Poisoning and Crash Risks in BIND: What You Need to Know About CVE-2025-40776 and CVE-2025-40777
The Internet Systems Consortium (ISC) has issued two security advisories addressing two high-impact vulnerabilities in BIND, its widely used Domain Name System (DNS) software. The vulnerabilities, tra ...
-
BleepingComputer
Citrix Bleed 2 exploited weeks before PoCs as Citrix denied attacks
A critical Citrix NetScaler vulnerability, tracked as CVE-2025-5777 and dubbed "CitrixBleed 2," was actively exploited nearly two weeks before proof-of-concept (PoC) exploits were made public, despite ...