Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
Apache Cloudstack fixes CVE-2024-42062 & CVE-2024-42222
Apache CloudStack project has released patches for addressing two critical vulnerabilities, that could allow attackers to gain unauthorized access to sensitive information and compromise the integri ... Read more
-
Cybersecurity News
HPE Aruba Networking Addresses Severe Vulnerabilities in Access Points
HPE Aruba Networking has released security updates to address multiple critical vulnerabilities in its Aruba Access Points running InstantOS and ArubaOS 10. These vulnerabilities could potentially all ... Read more
-
The Register
Using 1Password on Mac? Patch up if you don’t want your Vaults raided
Password manager 1Password is warning that all Mac users running versions before 8.10.36 are vulnerable to a bug that allows attackers to steal vault items. 1Password Vaults are essentially mini passw ... Read more
-
TheCyberThrone
Jenkins Patches Critical Vulnerability CVE-2024-43044
Jenkins has released an urgent advisory detailing two vulnerabilities, that expose Jenkins instances to arbitrary file read and unauthorized access risks,The critical one of the two vulnerabilities, t ... Read more
-
The Cyber Express
Critical 1Password Vulnerability: Hackers Could Exploit Security Flaw to Access Unlock Keys
AgileBits, the developer behind the 1Password password manager, has disclosed a severe security vulnerability that could potentially allow attackers to extract sensitive information from macOS users. ... Read more
-
cert.pl
Vulnerability in KAON AR2140 routers firmware
CVE ID CVE-2024-3659 Publication date 08 August 2024 Vendor KAON Group Product AR2140 Vulnerable versions From 3.2.46 before 4.2.16 Vulnerability type (CWE) Improper Neutralization of Special Elements ... Read more
-
The Hacker News
Windows Downgrade Attack Risks Exposing Patched Systems to Old Vulnerabilities
Windows Security / Vulnerability Microsoft said it is developing security updates to address two loopholes that it said could be abused to stage downgrade attacks against the Windows update architectu ... Read more
-
Help Net Security
“Perfect” Windows downgrade attack turns fixed vulnerabilities into zero-days
A researcher has developed a downgrade attack that can make Windows machines covertly, persistently and irreversibly vulnerable, even if they were fully patched before that. A downgrade attack exploit ... Read more
-
Cyber Security News
Cisco Software Manager Password Change Vulnerability Let Hackers Change password
A critical vulnerability in Cisco’s Smart Software Manager On-Prem (SSM On-Prem) has surfaced, allowing unauthenticated, remote attackers to change user passwords, including those of administrative us ... Read more
-
Cyber Security News
AMD Patches Multiple Memory Vulnerabilities That Leads Corrupt The Guest VM
Three potential vulnerabilities in Secure Encrypted Virtualization – Secure Nested Paging (SEV-SNP) could allow an attacker to read or corrupt the memory of a guest VM. To establish an isolated execut ... Read more