CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
Hackers exploit Four-Faith router flaw to open reverse shells
Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells back to the attackers. The malicious ac ... Read more
-
The Hacker News
⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips
Cybersecurity / Hacking News Every week, the digital world faces new challenges and changes. Hackers are always finding new ways to breach systems, while defenders work hard to keep our data safe. Whe ... Read more
-
The Cyber Express
Microsoft, Ivanti, and More: 2024 KEV Catalog Highlights Vendor Vulnerabilities
In 2024, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) continued to build on its critical cybersecurity initiative by expanding its Known Exploited Vulnerabilities (KEV) catalog. Th ... Read more
-
TheCyberThrone
CVE-2024-56512 impacts Apache NiFi
CVE-2024-56512 is a security vulnerability identified in Apache NiFi, specifically affecting versions 1.10.0 through 2.0.0. This vulnerability is due to missing fine-grained authorization checks when ... Read more
-
cert.pl
Vulnerability in Infinix Mobile Weather application
CVE ID CVE-2024-12993 Publication date 30 December 2024 Vendor Infinix Mobile Product com.rlk.weathers Vulnerable versions 7.0.0.037 Vulnerability type (CWE) Exposure of Sensitive System Information t ... Read more
-
TheCyberThrone
Exploit Code released for Apache Traffic Control Flaw CVE-2024-45387
What is CVE-2024-45387?CVE-2024-45387 is a critical vulnerability identified in Apache Traffic Control, specifically affecting the Traffic Ops module in versions 8.0.0 to 8.0.1. The nature of this vul ... Read more
-
tripwire.com
What's Next for Cybersecurity in 2025 and Beyond? Fortra Experts Weigh In
We are fast approaching the end of (another) turbulent year for cybersecurity. Looking back, it's hard to believe that so much can happen in such a short time. As we finish up our work for the year, h ... Read more
-
Cybersecurity News
AI Dev Gallery: Microsoft Unleashes On-Device AI for Windows 11
Microsoft has recently introduced an open-source development resource called “AI Dev Gallery” for devices equipped with the Windows 11 operating system and branded as “AI PCs.” This resource enables d ... Read more
-
The Cyber Express
Critical Apache Vulnerabilities: Update Now to Avoid Major Risks
The Cyber Security Agency of Singapore has issued a warning about several critical vulnerabilities found in Apache software products. The Apache Software Foundation has rolled out security patches add ... Read more
-
Hackread - Latest Cybersecurity, Tech, Crypto & Hacking News
Critical Flaw Exposes Four-Faith Routers to Remote Exploitation
SUMMARY: Vulnerability: CVE-2024-12856 impacts Four-Faith routers (models F3x24 and F3x36), allowing remote code execution. Exploit Path: Attackers use the /apply.cgi endpoint to exploit the adj_time_ ... Read more