CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed
A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited in the wild, with over 80,000 potentially vulnerable servers exposed on the ...
-
TheCyberThrone
Patching Became A Race in 2025: Microsoft Security Reckoning
Microsoft’s Patch Tuesday releases in 2025 tell a clear and sobering story: record-breaking vulnerability volume, sustained zero-day exploitation, and a decisive attacker shift toward privilege escala ...
-
CybersecurityNews
MongoBleed (CVE-2025-14847) Now Exploited in the Wild: MongoDB Servers at Critical Risk
A high-severity unauthenticated information-leak vulnerability in MongoDB Server, dubbed MongoBleed after the infamous Heartbleed bug, is now being actively exploited in real-world attacks. MongoDB ha ...
-
CybersecurityNews
Ubisoft Rainbow Six Siege Servers Breach linked to MongoBleed Vulnerability
The chaos surrounding Ubisoft escalated significantly today as the first group of hackers, previously known for silent exploits, initiated a highly visible and disruptive takeover of Rainbow Six Siege ...
-
Help Net Security
Week in review: WatchGuard Firebox firewalls attacked, infosec enthusiasts targeted with fake PoCs
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Building cyber talent through competition, residency, and real-world immersion In this Help Net Securi ...
-
Daily CyberSecurity
Open-Source Standoff: GitHub Freezes Rockchip’s Code After Two-Year FFmpeg License Battle
Rockchip Electronics, a company focused on chip design, has found itself at the center of controversy after being accused by the well-known open-source project FFmpeg of copying code in violation of l ...
-
BleepingComputer
Massive Rainbow Six Siege breach gives players billions of credits
Ubisoft's Rainbow Six Siege (R6) suffered a breach that allowed hackers to abuse internal systems to ban and unban players, manipulate in-game moderation feeds, and grant massive amounts of in-game cu ...
-
seclists.org
[KIS-2025-14] PKP-WAL <= 3.5.0-1 Login Cross-Site Request Forgery Vulnerability
Full Disclosure mailing list archives From: Egidio Romano <n0b0d13s () gmail com> Date: Tue, 23 Dec 2025 12:20:56 +0100 ----------------------------------------------------------------- PKP-WAL <= 3.5 ...
-
seclists.org
[KIS-2025-13] PKP-WAL <= 3.5.0-3 (X-Forwarded-Host) LESS Code Injection Vulnerability
Full Disclosure mailing list archives From: Egidio Romano <n0b0d13s () gmail com> Date: Tue, 23 Dec 2025 12:20:01 +0100 ----------------------------------------------------------------------- PKP-WAL ...
-
seclists.org
[KIS-2025-12] PKP-WAL <= 3.5.0-1 (baseColour) LESS Code Injection Vulnerability
Full Disclosure mailing list archives From: Egidio Romano <n0b0d13s () gmail com> Date: Tue, 23 Dec 2025 12:19:02 +0100 ----------------------------------------------------------------- PKP-WAL <= 3.5 ...