CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Threat Actors Allegedly Selling Microsoft Office 0-Day RCE Vulnerability on Hacking Forums
A threat actor known as Zeroplayer has reportedly listed a zero-day remote code execution (RCE) vulnerability, combined with a sandbox escape, targeting Microsoft Office and Windows systems for sale o ...
-
CybersecurityNews
Critical N-able N-central Vulnerabilities Allow attacker to interact with legacy APIs and read sensitive files
N-able’s N-central remote management and monitoring (RMM) platform faces critical security risks following the discovery of multiple vulnerabilities. According to Horizon3.ai, it allows unauthenticate ...
-
CybersecurityNews
Critical Twonky Server Vulnerabilities Let Attackers Bypass Authentication
Twonky Server version 8.5.2 contains two critical authentication bypass vulnerabilities that allow unauthenticated attackers to gain full administrative access to the media server software. Rapid7 dis ...
-
Daily CyberSecurity
Grafana Patches Critical SCIM Flaw (CVE-2025-41115, CVSS 10) Allowing Privilege Escalation and User Impersonation
Grafana has released emergency security updates for Grafana Enterprise addressing a critical privilege-escalation flaw in its SCIM provisioning feature. Tracked as CVE-2025-41115, the vulnerability ca ...
-
cert.pl
Vulnerabilities in SOPlanning software
Vulnerabilities in SOPlanning software CVE ID CVE-2025-62293 Publication date 20 November 2025 Vendor SOPlanning Product SOPlanning Vulnerable versions All before 1.55 Vulnerability type (CWE) Missing ...
-
Daily CyberSecurity
NVIDIA Crushes AI Bubble Fears with Record $57B Revenue
NVIDIA has released its financial report for the third quarter of fiscal year 2026, directly addressing mounting concerns about a potential AI bubble. “Blackwell sales are off the charts, and cloud GP ...
-
CybersecurityNews
CISA Warns of Google Chrome 0-Day Vulnerability Exploited in Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert about a zero-day vulnerability in Google Chrome, actively exploited by threat actors. CVE-2025-13223 is a fl ...
-
security.nl
Britse gezondheidszorg NHS waarschuwt voor misbruik van lek in 7-Zip
De Britse gezondheidszorg NHS waarschuwt voor actief misbruik van een kwetsbaarheid in het populaire archiveringsprogramma 7-Zip, waardoor remote code execution via speciaal geprepareerde zip-bestande ...
-
CybersecurityNews
China-Nexus APT Group Leverages DLL Sideloading Technique to Attack Government and Media Sectors
A targeted cyber espionage campaign has emerged across Southeast Asia, specifically affecting government and media organizations in countries surrounding the South China Sea. The campaign, which has b ...
-
Help Net Security
When IT fails, OT pays the price
State groups, criminal crews, and hybrid operators are all using familiar IT entry points to reach systems that support industrial processes, according to the latest Operational Technology Threat Repo ...