CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Houthi Influence Campaign: Deceptive Tactics on Facebook Target Israel and Gulf States
In a recent cybersecurity analysis, ClearSky’s team uncovered a persistent influence campaign originating from Yemen/Houthi, targeting Israel and Gulf states. The campaign, initially exposed in 2019, ... Read more
-
Trend Micro
BPFDoor’s Hidden Controller Used Against Asia, Middle East Targets
Key Takeaways BPFDoor is a state-sponsored backdoor designed for cyberespionage activities. Through our investigation of BPFDoor attacks, we unearthed a controller that hasn’t been observed being used ... Read more
-
Daily CyberSecurity
CVE-2024-56406: Heap Overflow Vulnerability in Perl Threatens Denial of Service and Potential Code Execution
Perl, a versatile programming language widely used for various tasks like system administration and web development, has been found to contain a security vulnerability. A recently discovered heap buff ... Read more
-
Daily CyberSecurity
Critical Vulnerabilities & Major Cyberattacks: April 7-13 Recap
The cybersecurity landscape has witnessed significant activity over the past week (April 7th – April 13th), with threat actors actively exploiting vulnerabilities in widely used software. The period s ... Read more
-
seclists.org
83 vulnerabilities in Vasion Print / PrinterLogic
Full Disclosure mailing list archives 83 vulnerabilities in Vasion Print / PrinterLogic From: Pierre Kim <pierre.kim.sec () gmail com> Date: Tue, 8 Apr 2025 13:48:18 -0400 Hello, Please find a text-on ... Read more
-
seclists.org
[CVE-2025-32102, CVE-2025-32103] SSRF and Directory Traversal in CrushFTP 10.7.1 and 11.1.0 (as well as legacy 9.x)
Full Disclosure mailing list archives From: Rafael Pedrero <rafael.pedrero () gmail com> Date: Fri, 4 Apr 2025 08:01:00 +0200 <!-- # Exploit Title: Server-Side Request Forgery (SSRF) in CrushFTP 10.7. ... Read more
-
seclists.org
Re: APPLE-SA-03-11-2025-2 iOS 18.3.2 and iPadOS 18.3.2
Full Disclosure mailing list archives From: Nick Boyce <nick.boyce () gmail com> Date: Sat, 5 Apr 2025 23:42:53 +0100 [Complete Apple product novice here (my devices all run a non-Apple OS), but I'm a ... Read more
-
seclists.org
[KIS-2025-01] UNA CMS <= 14.0.0-RC4 (BxBaseMenuSetAclLevel.php) PHP Object Injection Vulnerability
Full Disclosure mailing list archives From: Egidio Romano <n0b0d13s () gmail com> Date: Mon, 7 Apr 2025 17:29:13 +0200 --------------------------------------------------------------------------------- ... Read more
-
seclists.org
OXAS-ADV-2025-0001: OX App Suite Security Advisory
Full Disclosure mailing list archives OXAS-ADV-2025-0001: OX App Suite Security Advisory From: Martin Heiland via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 7 Apr 2025 09:11:36 +0200 ( ... Read more
-
CrowdStrike.com
Kubernetes IngressNightmare Vulnerabilities: What You Need to Know
We would like to recognize Amit Serper, Travis Lowe, Tony Gore, Adrian Godoy, Mihai Vasilescu, Suraj Sahu, Pablo Ramos, Raj Jammalamadaka, Lacie Griffin, and Josh Grunzweig for their contributions in ... Read more