CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Moxa Alerts Users to High-Severity Vulnerabilities in Cellular and Secure Routers
Vulnerability / Network Security Taiwan-based Moxa has warned of two security vulnerabilities impacting its cellular routers, secure routers, and network security appliances that could allow privilege ... Read more
-
Cybersecurity News
CVE-2024-51741 and CVE-2024-46981: Redis Flaws Expose Millions to DoS and RCE Risks
Two vulnerabilities have been discovered in Redis, the popular in-memory database, leaving millions of users at risk. CVE-2024-51741 allows attackers to trigger a denial-of-service (DoS) attack, while ... Read more
-
Cybersecurity News
CVE-2024-43096 and More: Critical RCE Flaws Patched in Android Security Update
The Android Security Bulletin for January 2025 highlights critical security vulnerabilities affecting millions of Android devices globally. With the 2025-01-05 security patch level, Google has address ... Read more
-
Cybersecurity News
CVE-2024-20154: Critical RCE Flaw in MediaTek Chipsets Impacts Millions
MediaTek has released its January 2025 Product Security Bulletin, addressing a range of security vulnerabilities affecting its various chipsets. The bulletin details flaws found in products ranging fr ... Read more
-
Cybersecurity News
Thousands of SonicWall Devices Remain Vulnerable to CVE-2024-40766
In September 2024, a critical vulnerability in SonicWall NSA devices, tracked as CVE-2024-40766, was disclosed. Since then, threat actors Akira and Fog have reportedly exploited this flaw to infiltrat ... Read more
-
Cybersecurity News
Exploiting Misconfigurations in Argo Workflows for Kubernetes Cluster Takeover
Argo Workflows, a widely-used open-source tool for orchestrating workflows in Kubernetes, has become a valuable asset for cloud-native automation. However, recent findings by Yali Mintus, a Cloud Secu ... Read more
-
Cybersecurity News
CVE-2024-8474: OpenVPN Connect Vulnerability Leaks Private Keys
Popular VPN client app, OpenVPN Connect, patched a critical security flaw that could have exposed users’ private keys and decrypted their VPN traffic.A recently disclosured vulnerability (CVE-2024-847 ... Read more
-
Cybersecurity News
Vulnerability Overload: 40,000+ CVEs in 2024
Security researcher Jerry Gamblin has released his annual CVE data review. 2024 saw an unprecedented surge in published Common Vulnerabilities and Exposures (CVEs), reaching a record high of 40,009. T ... Read more
-
Cybersecurity News
Windows 11’s TPM 2.0: Free Software Foundation Fights Forced Upgrades and E-Waste
The Free Software Foundation (FSF) is fresh off a successful International Day Against DRM (IDAD), held on December 20th, 2024. This year’s focus was on Microsoft’s controversial requirement of a hard ... Read more
-
BleepingComputer
Vulnerable Moxa devices expose industrial networks to attacks
Industrial networking and communications provider Moxa is warning of a high-severity and a critical vulnerability that impact various models of its cellular routers, secure routers, and network securi ... Read more