CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
seclists.org
APPLE-SA-02-10-2025-2 iPadOS 17.7.5
Full Disclosure mailing list archives From: Apple Product Security via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 10 Feb 2025 11:32:41 -0800 -----BEGIN PGP SIGNED MESSAGE----- Hash: SH ... Read more
-
seclists.org
APPLE-SA-02-10-2025-1 iOS 18.3.1 and iPadOS 18.3.1
Full Disclosure mailing list archives From: Apple Product Security via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 10 Feb 2025 11:28:53 -0800 -----BEGIN PGP SIGNED MESSAGE----- Hash: SH ... Read more
-
seclists.org
CVE-2024-55447: Access Control in Paxton Net2 software (update)
Full Disclosure mailing list archives From: Jeroen Hermans via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 10 Feb 2025 23:21:18 +0100 CloudAware Security Advisory CVE-2024-55447: Potent ... Read more
-
The Register
Apple warns 'extremely sophisticated attack' may be targeting iThings
Apple has warned that some iPhones and iPads may have been targeted by an “extremely sophisticated attack” and has posted patches that hopefully prevent it. The patches fix a flaw in USB Restricted Mo ... Read more
-
BleepingComputer
Over 12,000 KerioControl firewalls exposed to exploited RCE flaw
Over twelve thousand GFI KerioControl firewall instances are exposed to a critical remote code execution vulnerability tracked as CVE-2024-52875. KerioControl is a network security suite that small an ... Read more
-
Dark Reading
XE Group Shifts From Card Skimming to Supply Chain Attacks
Source: HakanGider via ShutterstockA cybercrime group long associated with credit card theft has expanded into targeted information stealing from supply chain organizations in the manufacturing and di ... Read more
-
security.nl
Apple waarschuwt voor iOS-lek gebruikt bij 'zeer geraffineerde aanval'
Apple waarschuwt voor een kwetsbaarheid in iOS en iPadOS die volgens het techbedrijf bij een 'zeer geraffineerde aanval' tegen bepaalde specifieke personen is gebruikt. Het beveiligingslek (CVE-2025-2 ... Read more
-
BleepingComputer
Apple fixes zero-day exploited in 'extremely sophisticated' attacks
Apple has released emergency security updates to patch a zero-day vulnerability that the company says was exploited in targeted and "extremely sophisticated" attacks. "A physical attack may disable US ... Read more
-
TheCyberThrone
CVE-2025-25064 impacts Zimbra with SQL Injection
CVE-2025-25064 is a critical security vulnerability identified in Zimbra Collaboration software, a widely used email and collaboration platform. This vulnerability poses significant risks to the secur ... Read more
-
The Cyber Express
CISA Flags Critical Trimble Cityworks Vulnerability (CVE-2025-0994) in KEV Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) announced the addition of a critical vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog. The vulnerability, identified as CV ... Read more