CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2024-21182: PoC Exploit Code Published for Severe WebLogic Flaw
A security researcher published a proof-of-concept (PoC) exploit for CVE-2024-21182, a critical vulnerability in Oracle WebLogic Server. Rated at CVSS 7.5, this flaw exposes affected systems to potent ... Read more
-
Cybersecurity News
Is Your Network at Risk? New Report Highlights Network File System Vulnerabilities
HvS-Consulting GmbH has released an insightful report shedding light on the often-overlooked vulnerabilities of the Network File System (NFS) protocol. Widely used across platforms for remote file acc ... Read more
-
objective-see.org
The Mac Malware of 2024
The Mac Malware of 2024 👾 A comprehensive analysis of the year's new macOS malware by: Patrick Wardle / January 1, 2025 The Objective-See Foundation is supported by: 📝 👾 Want to play along? The majori ... Read more
-
The Register
China's cyber intrusions took a sinister turn in 2024
The Chinese government's intrusions into America's telecommunications and other critical infrastructure networks this year appears to signal a shift from cyberspying as usual to prepping for destructi ... Read more
-
security.nl
Securitybedrijf meldt actief misbruik van lek in industriële routers Four-Faith
Aanvallers maken actief misbruik van een kwetsbaarheid in industriële routers van fabrikant Four-Faith en het is onduidelijk of er updates beschikbaar zijn om het probleem te verhelpen, zo meldt secur ... Read more
-
TheCyberThrone
CVE-2024-21182: Oracle WebLogic Server Flaw Exploit Code Released
CVE-2024-21182 is a high-severity vulnerability identified in Oracle WebLogic Server. This security flaw affects specific versions of the software, namely Oracle WebLogic Server 12.2.1.4.0 and 14.1.1. ... Read more
-
The Hacker News
Chinese APT Exploits BeyondTrust API Key to Access U.S. Treasury Systems and Documents
Vulnerability / Incident Response The United States Treasury Department said it suffered a "major cybersecurity incident" that allowed suspected Chinese threat actors to remotely access some computers ... Read more
-
seclists.org
Multiple vulnerabilities in CTFd versions <= 3.7.4
Full Disclosure mailing list archives From: Blazej Adamczyk <blazej.adamczyk () gmail com> Date: Tue, 24 Dec 2024 12:28:40 +0100 ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ Multiple vulnerabili ... Read more
-
seclists.org
IBMi Navigator / CVE-2024-51464 / HTTP Security Token Bypass
Full Disclosure mailing list archives IBMi Navigator / CVE-2024-51464 / HTTP Security Token Bypass From: hyp3rlinx <apparitionsec () gmail com> Date: Fri, 27 Dec 2024 22:21:21 -0500 [+] Credits: John ... Read more
-
seclists.org
IBMi Navigator / CVE-2024-51463 / Server Side Request Forgery (SSRF)
Full Disclosure mailing list archives IBMi Navigator / CVE-2024-51463 / Server Side Request Forgery (SSRF) From: hyp3rlinx <apparitionsec () gmail com> Date: Fri, 27 Dec 2024 22:19:52 -0500 [+] Credit ... Read more