CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Help Net Security
Recently fixed HPE OneView flaw is being exploited (CVE-2025-37164)
An unauthenticated remote code execution vulnerability (CVE-2025-37164) affecting certain versions of HPE OneView is being leveraged by attackers, CISA confirmed by adding the flaw to its Known Exploi ...
-
The Register
CISA flags actively exploited Office relic alongside fresh HPE flaw
CISA has added a pair of security holes to its actively exploited list, warning that attackers are now abusing a maximum-severity bug in HPE's OneView management software and a years-old flaw in Micro ...
-
security.nl
NCSC verwacht misbruik van kritieke Ni8mare-kwetsbaarheid in n8n
Het Nationaal Cyber Security Centrum (NCSC) verwacht dat aanvallers misbruik zullen gaan maken van een kritieke kwetsbaarheid in n8n, aangeduid als Ni8mare en CVE-2026-21858, waardoor ongeauthenticeer ...
-
cert.pl
Vulnerabilities in Asseco InfoMedica Plus software
Vulnerabilities in Asseco InfoMedica Plus software CVE ID CVE-2025-8306 Publication date 08 January 2026 Vendor Asseco Product InfoMedica Plus Vulnerable versions From 4.0.0 to 4.50.1 and from 5.0.0 t ...
-
The Hacker News
ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories
The internet never stays quiet. Every week, new hacks, scams, and security problems show up somewhere.This week's stories show how fast attackers change their tricks, how small mistakes turn into big ...
-
security.nl
Kritiek jsPDF-lek laat aanvaller vertrouwelijke informatie van servers stelen
Een kritieke kwetsbaarheid in jsPDF, een library om in JavaScript pdf-bestanden te genereren, maakt het mogelijk voor aanvallers om gevoelige informatie van servers te stelen. De impact van de kwetsb ...
-
CybersecurityNews
CISA Adds HP Enterprise OneView Code Injection Vulnerability to KEV Following Active Exploitation
A critical code injection flaw in Hewlett Packard Enterprise OneView, tracked as CVE-2025-37164, has been added to CISA’s Known Exploited Vulnerabilities (KEV) catalog. The vulnerability has been conf ...
-
CybersecurityNews
Cisco Snort 3 Detection Engine Vulnerability Leaks Sensitive Data
Two critical vulnerabilities have been identified in Cisco’s Snort 3 detection engine, posing significant risks to network security infrastructure across multiple Cisco products. These weaknesses stem ...
-
CybersecurityNews
Cisco ISE Vulnerability Let Remote attacker Access Sensitive Data – Public PoC Available
Cisco has patched a critical flaw in its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) that lets authenticated administrators snoop on sensitive server files. Dubbed CVE- ...
-
The Register
Maximum-severity n8n flaw lets randos run your automation server
A maximum-severity bug in the popular automation platform n8n has left an estimated 100,000 servers wide open to complete takeover, courtesy of a flaw so bad it doesn't even require logging in. The vu ...