CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection
Vulnerability / Threat Intelligence Threat actors are attempting to take advantage of a recently disclosed security flaw impacting GFI KerioControl firewalls that, if successfully exploited, could all ... Read more
-
security.nl
Ivanti waarschuwt voor actief aangevallen lek in Connect Secure VPN
Softwarebedrijf Ivanti waarschuwt organisaties, net als een jaar geleden, voor een actief aangevallen kwetsbaarheid in Connect Secure VPN en roept op de nu beschikbaar gestelde update te installeren. ... Read more
-
The Hacker News
Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure
Ivanti is warning that a critical security flaw impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways has come under active exploitation in the wild beginning mid-December 2024. The securit ... Read more
-
Cybersecurity News
Zero-Day Alert: UNC5337 Exploits Ivanti VPN Vulnerability CVE-2025-0282 for Espionage Operations
Ivanti Connect Secure (ICS) VPN appliances have become the focus of advanced threat actors, exploiting a newly disclosed zero-day vulnerability. According to a recent report by Mandiant, the exploitat ... Read more
-
Cybersecurity News
macOS Vulnerability CVE-2024-54527 Unveiled: TCC Bypass PoC Exploit Code Released
A detailed technical and a proof-of-concept (PoC) exploit code from security researcher Mickey Jin has unveiled a critical TCC (Transparency, Consent, and Control) bypass vulnerability in macOS, CVE-2 ... Read more
-
Cybersecurity News
Mutiple Vulnerabilities Found in Palo Alto Networks Expedition Tool
Palo Alto Networks has issued a security advisory addressing multiple vulnerabilities in its Expedition migration tool, which could expose sensitive data and allow unauthorized actions on affected sys ... Read more
-
Cybersecurity News
GitLab Tackles Critical Security Flaws in Latest Patch Release
GitLab, the popular DevOps platform, has released a patch update addressing several security vulnerabilities affecting its import functionality and other core features. Versions 17.7.1, 17.6.3, and 17 ... Read more
-
Cybersecurity News
Apache OpenMeetings Users Urged to Patch Critical Flaw – CVE-2024-54676 (CVSS 9.8)
A critical security vulnerability (CVE-2024-54676, CVSS 9.8) has been discovered in Apache OpenMeetings, a popular open-source platform for video conferencing and online collaboration. The flaw could ... Read more
-
Cybersecurity News
MirrorFace: Unmasking the Chinese Cyber Espionage Group Targeting Japan
On January 8, 2025, the Japanese National Police Agency (NPA) issued a critical warning regarding ongoing cyberattacks attributed to the MirrorFace group, also known as “Earth Kasha.” Active since 201 ... Read more
-
Cybersecurity News
CVE-2024-54006 & CVE-2024-54007: Command Injection Flaws in HPE Aruba Devices, PoC Publicly Available
HPE Aruba Networking has issued a security advisory addressing multiple command injection vulnerabilities in its 501 Wireless Client Bridge. These flaws, tracked as CVE-2024-54006 and CVE-2024-54007, ... Read more