CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
CISA Adds Microsoft and Zimbra Flaws to KEV Catalog Amid Active Exploitation
Enterprise Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday placed two security flaws impacting Microsoft Partner Center and Synacor Zimbra Collabor ... Read more
-
CrowdStrike.com
February 2025 Patch Tuesday: Four Zero-Days and Three Critical Vulnerabilities Among 67 CVEs
Microsoft has released security updates for 67 vulnerabilities in its February 2025 Patch Tuesday rollout. Among these are three Critical vulnerabilities and four zero-days affecting the Windows NTLMv ... Read more
-
Cybersecurity News
CVE-2024-12084 & CVE-2024-12085: Rsync Flaws Allow Hackers to Take Over Servers, PoC Published
A set of high-risk vulnerabilities has been disclosed in Rsync, the widely used file synchronization and data transfer tool. Security researchers Simon Scannell, Pedro Gallegos, and Jasiel Spelman fro ... Read more
-
Cybersecurity News
SoaPy: A New Tool for Stealthy Active Directory Enumeration via ADWS
Enumeration of service accounts using SoaPy | Image: IBMIBM X-Force Research has introduced SoaPy, a new Python-based tool designed for stealthy Active Directory (AD) enumeration using Active Director ... Read more
-
Cybersecurity News
CISA Flags Actively Exploited Zimbra (CVE-2023-34192) and Microsoft (CVE-2024-49035) Vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning, adding two critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. This move underscores the ur ... Read more
-
Cybersecurity News
CVE-2025-24752: Massive WordPress Plugin Vulnerability Exposes Millions to XSS Attacks
A high-severity security flaw has been discovered in the widely used WordPress plugin, Essential Addons for Elementor, putting over two million websites at risk. The vulnerability, tracked as CVE-2025 ... Read more
-
Cybersecurity News
OpenH264 Codec Vulnerability (CVE-2025-27091): Remote Code Execution Possible
Cisco has released a security advisory concerning a high-severity vulnerability in the OpenH264 codec library. Tracked as CVE-2025-27091 and assigned a CVSSv4 score of 8.6, this vulnerability could al ... Read more
-
Cybersecurity News
GRUB2 Bootloader Vulnerabilities Expose Millions of Systems to Attacks
A series of critical vulnerabilities have been discovered in GRUB2, the popular boot loader used by many Linux distributions. These flaws could allow attackers to bypass security measures, potentially ... Read more
-
Cybersecurity News
PolarEdge Botnet: 2,000+ IoT Devices Infected
Image: SekoiaThe PolarEdge botnet, a sophisticated IoT-based malware campaign, has been discovered by Sekoia’s Threat Detection & Research (TDR) team, targeting vulnerable Cisco Small Business Routers ... Read more
-
Dark Reading
Max Severity RCE Vuln in All Versions of MITRE Caldera
Source: VallepuGraphics via ShutterstockA maximum severity remote code execution (RCE) bug has emerged that affects all versions of MITRE Caldera going back to the first versions of the open source ad ... Read more