CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
cert.pl
Vulnerabilities in OpenSolution QuickCMS software
Vulnerabilities in OpenSolution QuickCMS software CVE ID CVE-2025-9982 Publication date 14 November 2025 Vendor OpenSolution Product QuickCMS Vulnerable versions 6.8 Vulnerability type (CWE) Plaintext ...
-
security.nl
CISA komt met een gezamenlijk Cybersecurity Advies #StopRansomware: Akira-ransomware
De cybersecurity-agentschappen en opsporingsinstanties roepen organisaties op maatregelen te nemen tegen de Akira-ransomware. Denk daarbij aan het verhelpen van kwetsbaarheden die actief worden aangep ...
-
BleepingComputer
ASUS warns of critical auth bypass flaw in DSL series routers
ASUS has released new firmware to patch a critical authentication bypass security flaw impacting several DSL series router models. Tracked as CVE-2025-59367, this vulnerability allows remote, unauthen ...
-
The Cyber Express
Android Reports Major Drop in Memory Bugs as Rust Adoption Accelerates
Android has shared new insights into how the platform’s long-term shift toward Rust is reshaping both security and software development. The new data reflects a decisive move toward memory safety, and ...
-
CybersecurityNews
Cl0P Ransomware Group Allegedly Claims Breach of Entrust in Oracle 0-Day EBS Hack
The notorious Cl0P ransomware group has claimed responsibility for breaching digital security firm Entrust, exploiting a critical zero-day vulnerability in Oracle E-Business Suite (EBS). The attack, t ...
-
CybersecurityNews
Critical Fortinet FortiWeb Vulnerability Exploited in the Wild to Create Admin Accounts
A critical vulnerability in Fortinet’s FortiWeb Web Application Firewall (WAF) is being actively exploited by threat actors, potentially as a zero-day attack vector. The flaw, which enables unauthenti ...
-
Daily CyberSecurity
ZERO-DAY ATTACK WARNING: Fortinet FortiWeb Exploit Grants Unauthenticated Admin Access!
Cybersecurity firms are sounding the alarm over a critical vulnerability in Fortinet FortiWeb, the company’s Web Application Firewall (WAF) product. The flaw, which has been observed actively exploite ...
-
CybersecurityNews
FortiWeb Authentication Bypass Vulnerability Exploited – Script to Detect Vulnerable Appliances
Threat actors are actively exploiting a critical authentication bypass vulnerability in Fortinet’s FortiWeb web application firewall (WAF) worldwide, prompting defenders to heighten vigilance. Researc ...
-
Daily CyberSecurity
Critical ASUS DSL Router Flaw (CVE-2025-59367, CVSS 9.3) Allows Unauthenticated Remote Access
ASUS has released an urgent security advisory addressing a critical authentication bypass vulnerability affecting several models in its DSL Series Router lineup. The flaw, tracked as CVE-2025-59367 wi ...
-
seclists.org
Re: [FD] : "Glass Cage" – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885)
Full Disclosure mailing list archives From: Patrick via Fulldisclosure <fulldisclosure () seclists org> Date: Fri, 07 Nov 2025 15:27:43 +0000 Hello Jan, You are completely right and it’s something I w ...