CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
CISA Adds ASUS Embedded Malicious Code Vulnerability to KEV List Following Active Exploitation
CISA has added a new ASUS vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, signaling urgent risk for affected users and organizations. The flaw, tracked as CVE-2025-59374, affects A ...
-
security.nl
Kritiek beveiligingslek in FreeBSD maakt remote code execution mogelijk
Een kritiek beveiligingslek in FreeBSD maakt remote code execution mogelijk, waarbij een aanvaller in hetzelfde netwerksegment moet zitten als het doelwit. Er zijn beveiligingsupdates uitgebracht om h ...
-
The Register
Another bad week for SonicWall as SMA 1000 zero-day under active exploit
SonicWall has warned customers of a zero-day flaw in its SMA 1000 remote-access appliance that's being actively exploited, potentially allowing attackers to escalate privileges and take over boxes. Th ...
-
CybersecurityNews
HPE OneView Software Vulnerability Let Attackers Execute Remote Code
A critical security alert warns customers about a severe vulnerability in HPE OneView Software that could allow remote attackers to execute arbitrary code without authentication. The flaw, tracked as ...
-
CybersecurityNews
Cisco Unified Contact Center Express Vulnerabilities Enables Remote Code Execution Attacks
A critical security advisory addressing multiple severe vulnerabilities in Cisco Unified Contact Center Express (Unified CCX). That could allow unauthenticated remote attackers to execute arbitrary co ...
-
The Hacker News
ThreatsDay Bulletin: WhatsApp Hijacks, MCP Leaks, AI Recon, React2Shell Exploit and 15 More Stories
This week's ThreatsDay Bulletin tracks how attackers keep reshaping old tools and finding new angles in familiar systems. Small changes in tactics are stacking up fast, and each one hints at where the ...
-
cert.pl
Vulnerabilities in WODESYS WD-R608U router
Vulnerabilities in WODESYS WD-R608U router CVE ID CVE-2025-65007 Publication date 18 December 2025 Vendor WODESYS Product WD-R608U Vulnerable versions WDR28081123OV1.01 Vulnerability type (CWE) Missin ...
-
security.nl
Microsoft maakt updates voor kritieke Office-lekken ook beschikbaar voor Mac
Microsoft heeft beveiligingsupdates voor twee kritieke kwetsbaarheden in Office die remote code execution mogelijk maken ook beschikbaar gesteld voor de Mac-versie van de kantoorsoftware. Op 9 januari ...
-
The Register
React2Shell exploitation spreads as Microsoft counts hundreds of hacked machines
Microsoft says attackers have already compromised "several hundred machines across a diverse set of organizations" via the React2Shell flaw, using the access to execute code, deploy malware, and, in s ...
-
BleepingComputer
HPE warns of maximum severity RCE flaw in OneView software
Hewlett Packard Enterprise (HPE) has patched a maximum-severity vulnerability in its HPE OneView software that enables attackers to execute arbitrary code remotely. OneView is HPE's infrastructure man ...