CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution
A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying operating s ...
-
0patch.com
Micropatches Released for Microsoft Office Security Feature Bypass Vulnerability (CVE-2026-21509)
Two days ago, Microsoft released an emergency update for Microsoft Office, resolving CVE-2026-21509, a vulnerability in Office that was found to be exploited in the wild. Microsoft's advisory initiall ...
-
The Hacker News
Two High-Severity n8n Flaws Allow Authenticated Remote Code Execution
Cybersecurity researchers have disclosed two new security flaws in the n8n workflow automation platform, including a crucial vulnerability that could result in remote code execution. The weaknesses, d ...
-
CybersecurityNews
Chrome Security Update Patches Background Fetch API Vulnerability
Chrome versions 144.0.7559.109 and 144.0.7559.110 have been released to the stable channel, addressing a critical security vulnerability in the Background Fetch API. The update is rolling out across W ...
-
security.nl
Thunderbird dicht lek dat aanvaller inhoud versleutelde e-mail laat stelen
De makers van e-mailclient Thunderbird hebben een beveiligingsupdate uitgebracht wegens een kwetsbaarheid waardoor een aanvaller de inhoud van versleutelde e-mail kan stelen. De Duitse overheid stelt ...
-
CybersecurityNews
Fortinet Confirms Critical FortiCloud SSO Vulnerability(CVE-2026-24858) Actively Exploited in the Wild
Fortinet has confirmed a critical authentication bypass vulnerability in its FortiCloud SSO feature, actively exploited in the wild under CVE-2026-24858. According to an advisory published on January ...
-
Daily CyberSecurity
SolarWinds Web Help Desk Hit with Multiple RCE and Auth Bypass Vulnerabilities
Security researchers have disclosed a barrage of critical vulnerabilities in SolarWinds Web Help Desk (WHD) software. The flaws, ranging from hardcoded credentials to remote code execution (RCE), open ...
-
The Hacker News
Google Warns of Active Exploitation of WinRAR Vulnerability CVE-2025-8088
Google on Tuesday revealed that multiple threat actors, including nation-state adversaries and financially motivated groups, are exploiting a now-patched critical security flaw in RARLAB WinRAR to est ...
-
security.nl
Google meldt grootschalig misbruik van bekende WinRAR-kwetsbaarheid
Aanvallers maken op grote schaal misbruik van een kwetsbaarheid in WinRAR waarvoor vorig jaar juli een beveiligingsupdate verscheen, zo meldt Google. WinRAR heeft geen automatische updatefunctie, wat ...
-
security.nl
Fortinet waarschuwt voor actief aangevallen lek in FortiOS en andere producten
woensdag 28 januari 2026, 09:40 door Redactie, 2 reactiesLaatst bijgewerkt: Vandaag, 09:49 Fortinet waarschuwt organisaties voor een actief aangevallen kritieke kwetsbaarheid in FortiOS en andere prod ...