CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
Quest KACE SMA flaw CVE-2025-32975 Actively Exploited
March 23, 2026OverviewCVE-2025-32975 is a critical authentication bypass vulnerability in Quest KACE SMA’s SSO authentication handling mechanism. The root cause lies in improper validation of authenti ...
-
Daily CyberSecurity
One Character to Rule Them All: How a Missing Slash Bypasses gRPC-Go Security (CVE-2026-33186)
A significant security flaw has been identified in gRPC-Go, the high-performance Go implementation of the gRPC framework. The vulnerability, tracked as CVE-2026-33186, carries a critical CVSS score of ...
-
The Hacker News
⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More
Another week, another reminder that the internet is still a mess. Systems people thought were secure are being broken in simple ways, showing many still ignore basic advisories. This edition covers a ...
-
Daily CyberSecurity
Roundcube Webmail Hits Critical Update: New Security Fixes Target Hidden Vulnerabilities
Roundcube Webmail has released a high-priority security update, version 1.6.14, aimed at patching several significant vulnerabilities that could put user data and server integrity at risk. This stable ...
-
CybersecurityNews
CISA Warns of Craft CMS Code Injection Vulnerability Exploited in Attacks
A critical vulnerability in Craft CMS (CVE-2025-32432) has been added to the Known Exploited Vulnerabilities catalog following confirmed active exploitation in the wild. Security teams and system admi ...
-
Help Net Security
Oracle issues emergency fix for pre-auth RCE in Identity Manager (CVE-2026-21992)
Oracle has released an out-of-band patch for a critical and easily exploitable vulnerability (CVE-2026-21992) in Oracle Identity Manager and Oracle Web Services Manager. The company did not say whethe ...
-
cert.pl
Vulnerability in KlinikaXP and KlinikaXP Insertino software
Vulnerability in KlinikaXP and KlinikaXP Insertino software CVE ID CVE-2026-1958 Publication date 23 March 2026 Vendor BRI Product KlinikaXP and KlinikaXP Insertino Vulnerable versions KlinikaXP: all ...
-
security.nl
'Tientallen Nederlandse SharePoint-servers bevatten actief misbruikt lek'
Tientallen Microsoft SharePoint-servers met een Nederlands ip-adres bevatten een kwetsbaarheid waarvan actief misbruikt wordt gemaakt, zo stelt The Shadowserver Foundation op basis van eigen onderzoek ...
-
CybersecurityNews
$30 IP-KVM Flaws Could Give Attackers BIOS-Level Control Across Enterprise Networks
$30 IP-KVM Flaws Attackers BIOS-Level Control Across Enterprise Networks A recent security assessment by researchers has uncovered nine severe vulnerabilities across four popular low-cost IP-KVM devic ...
-
CybersecurityNews
CISA Warns of Apple Vulnerabilities Linked to DarkSword iOS Exploit Chain Exploited in Attacks
CISA Warns Apple Vulnerabilities Linked to DarkSword iOS Exploit Chain An urgent warning regarding three critical Apple vulnerabilities that threat actors are actively exploiting in the wild. These se ...