CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Help Net Security
MITRE Caldera RCE vulnerability with public PoC fixed, patch ASAP! (CVE-2025–27364)
Users of the MITRE Caldera cyber security platform have been urged to plug a critical hole (CVE-2025–27364) that may allow unauthenticated attackers to achieve remote code execution. About MITRE Calde ... Read more
-
The Hacker News
RDP: a Double-Edged Sword for IT Teams – Essential Yet Exploitable
Remote Desktop Protocol (RDP) is an amazing technology developed by Microsoft that lets you access and control another computer over a network. It's like having your office computer with you wherever ... Read more
-
Cyber Security News
Chinese Hackers Exploiting Check Point’s VPN Zero-Day Flaw to Attack Orgs Worldwide
A cyber attack leveraging Check Point’s patched CVE-2024-24919 vulnerability has targeted organizations across Europe, Africa, and the Americas. Security analysts have observed direct linkages to Chin ... Read more
-
Cyber Security News
Nakivo Backup & Replication Tool Vulnerability Allows Attackers to Read Arbitrary Files – PoC Released
A critical vulnerability tracked as CVE-2024-48248, has been discovered in the Nakivo Backup & Replication tool, exposing systems to unauthenticated arbitrary file read attacks. Security researchers f ... Read more
-
TheCyberThrone
PolarEdge Botnet Campaign
PolarEdge Botnet has emerged as a significant threat in the cybersecurity landscape, exploiting vulnerabilities in edge devices from multiple manufacturers, including Cisco, ASUS, QNAP, and Synology. ... Read more
-
The Cyber Express
CISA Appoints Karen Evans as New Cybersecurity Executive Assistant Director
Karen Evans has been appointed as the new Executive Assistant Director (EAD) for Cybersecurity at the Cybersecurity and Infrastructure Security Agency (CISA). In this new role, Evans brings an extensi ... Read more
-
cert.pl
Vulnerabilities in CyberArk Endpoint Privilege Manager software
CVE ID CVE-2025-22270 Publication date 28 February 2025 Vendor CyberArk Product Endpoint Privilege Manager Vulnerable versions 24.7.1 Vulnerability type (CWE) Improper Neutralization of Input During W ... Read more
-
Cyber Security News
PingAM Java Agent Vulnerability Let Attackers Gain Unauthorized Access
Ping Identity has issued an urgent security advisory for its PingAM Java Agent, revealing a critical severity vulnerability (CVE-2025-20059) that enables attackers to bypass policy enforcement mechani ... Read more
-
cert.pl
Vulnerability in DaVinci Resolve application
CVE ID CVE-2025-1413 Publication date 28 February 2025 Vendor Blackmagic Design Inc Product DaVinci Resolve Vulnerable versions All before 19.1.3 Vulnerability type (CWE) Incorrect Privilege Assignmen ... Read more
-
security.nl
Lek in Draytek-routers laat aanvaller code uitvoeren, backdoor installeren
Kwetsbaarheden in meerdere modellen DrayTek Vigor-routers maken het mogelijk voor aanvallers om in het ergste geval willekeurige code uit te voeren en 'persistent backdoors' te installeren, zo waarsch ... Read more