CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
security.nl
NCSC verwacht misbruik van kritieke Ni8mare-kwetsbaarheid in n8n
Het Nationaal Cyber Security Centrum (NCSC) verwacht dat aanvallers misbruik zullen gaan maken van een kritieke kwetsbaarheid in n8n, aangeduid als Ni8mare en CVE-2026-21858, waardoor ongeauthenticeer ...
-
cert.pl
Vulnerabilities in Asseco InfoMedica Plus software
Vulnerabilities in Asseco InfoMedica Plus software CVE ID CVE-2025-8306 Publication date 08 January 2026 Vendor Asseco Product InfoMedica Plus Vulnerable versions From 4.0.0 to 4.50.1 and from 5.0.0 t ...
-
The Hacker News
ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories
The internet never stays quiet. Every week, new hacks, scams, and security problems show up somewhere.This week's stories show how fast attackers change their tricks, how small mistakes turn into big ...
-
security.nl
Kritiek jsPDF-lek laat aanvaller vertrouwelijke informatie van servers stelen
Een kritieke kwetsbaarheid in jsPDF, een library om in JavaScript pdf-bestanden te genereren, maakt het mogelijk voor aanvallers om gevoelige informatie van servers te stelen. De impact van de kwetsb ...
-
CybersecurityNews
CISA Adds HP Enterprise OneView Code Injection Vulnerability to KEV Following Active Exploitation
A critical code injection flaw in Hewlett Packard Enterprise OneView, tracked as CVE-2025-37164, has been added to CISA’s Known Exploited Vulnerabilities (KEV) catalog. The vulnerability has been conf ...
-
CybersecurityNews
Cisco Snort 3 Detection Engine Vulnerability Leaks Sensitive Data
Two critical vulnerabilities have been identified in Cisco’s Snort 3 detection engine, posing significant risks to network security infrastructure across multiple Cisco products. These weaknesses stem ...
-
CybersecurityNews
Cisco ISE Vulnerability Let Remote attacker Access Sensitive Data – Public PoC Available
Cisco has patched a critical flaw in its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) that lets authenticated administrators snoop on sensitive server files. Dubbed CVE- ...
-
The Register
Maximum-severity n8n flaw lets randos run your automation server
A maximum-severity bug in the popular automation platform n8n has left an estimated 100,000 servers wide open to complete takeover, courtesy of a flaw so bad it doesn't even require logging in. The vu ...
-
Help Net Security
PoC released for unauthenticated RCE in Trend Micro Apex Central (CVE-2025-69258)
Trend Micro has released a critical patch fixing several remotely exploitable vulnerabilities in Apex Central (on-premise), including a flaw (CVE-2025-69258) that may allow unauthenticated attackers t ...
-
CybersecurityNews
CISA Warns of Microsoft PowerPoint Code Injection Vulnerability Exploited in Attacks
CISA issued a critical alert regarding a code-injection vulnerability in Microsoft PowerPoint that poses a significant risk to organizations worldwide. The vulnerability, tracked as CVE-2009-0556, all ...