CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2024-51466 (CVSS 9.0): Critical Vulnerability Found in IBM Cognos Analytics
IBM has disclosed two severe vulnerabilities in its Cognos Analytics platform that could compromise sensitive data and system integrity. These vulnerabilities, identified as CVE-2024-51466 and CVE-202 ... Read more
-
TheCyberThrone
Detailing Databricks Vulnerability CVE-2024-49194
A critical vulnerability has been identified that affects the Databricks JDBC Driver. This vulnerability allows for remote code execution (RCE) through a JNDI injection exploit using a malicious JDBC ... Read more
-
Cybersecurity News
Critical Flaws in Rockwell Automation PowerMonitor 1000 Devices: CVSS Scores Hit 9.8/10
Rockwell Automation has issued a critical security advisory highlighting three severe vulnerabilities affecting its PowerMonitor 1000 devices. These vulnerabilities, identified by Vera Mens of Claroty ... Read more
-
Dark Reading
US Ban on TP-Link Routers More About Politics Than Exploitation Risk
Source: metamorworks via ShutterstockWith US government agencies and lawmakers reportedly considering a ban on TP-Link's products in the United States, one might think the company would rank high on t ... Read more
-
TheCyberThrone
Sophos fixes Triple Critical Vulnerabilities in its Firewall
Sophos released patches for three critical security vulnerabilities in their widely-used network security tool, Sophos Firewall that posed significant risks, including remote code execution and privil ... Read more
-
security.nl
Kritiek lek in Sophos-firewalls maakt remote code execution mogelijk
Een kritieke kwetsbaarheid in de firewalls van Sophos maakt remote code execution mogelijk of kan een aanvaller SSH-toegang geven. Het bedrijf heeft beveiligingsupdates uitgebracht om het probleem te ... Read more
-
BleepingComputer
Sophos Firewall vulnerable to critical remote code execution flaw
Sophos has addressed three vulnerabilities in its Sophos Firewall product that could allow remote unauthenticated threat actors to perform SQL injection, remote code execution, and gain privileged SSH ... Read more
-
BleepingComputer
Sophos discloses critical Firewall remote code execution flaw
Sophos has addressed three vulnerabilities in its Sophos Firewall product that could allow remote unauthenticated threat actors to perform SQL injection, remote code execution, and gain privileged SSH ... Read more
-
cert.pl
Vulnerability in DirectAdmin Evolution Skin software
CVE ID CVE-2024-10385 Publication date 20 December 2024 Vendor DirectAdmin Product DirectAdmin Evolution Skin Vulnerable versions All before 1.668 Vulnerability type (CWE) Improper Neutralization of I ... Read more
-
security.nl
BeyondTrust meldt inbraak op Remote Support SaaS instances van klanten
Securitybedrijf BeyondTrust is getroffen door een aanval waarbij aanvallers hebben ingebroken op de Remote Support SaaS instances van klanten, zo heeft het bedrijf zelf bekendgemaakt. De Amerikaanse o ... Read more