CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
Django was affected by CVE-2024-53907 and CVE-2024-53908
The Django team has released Django 5.1.4, Django 5.0.10, and Django 4.2.17 versions to address two security vulnerabilities.The first vulnerability tracked as CVE-2024-53907 with a CVSS score of 7.5 ... Read more
-
Help Net Security
Week in review: Veeam Service Provider Console flaws fixed, Patch Tuesday forecast
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Veeam plugs serious holes in Service Provider Console (CVE-2024-42448, CVE-2024-42449) Veeam has fixed ... Read more
-
Cybersecurity News
CVE-2024-12209 (CVSS 9.8): WP Umbrella Plugin Vulnerability Exposes 30,000 Websites to Compromise
A critical security vulnerability has been discovered in the popular WordPress plugin, WP Umbrella, which is used by over 30,000 websites. The flaw, identified as CVE-2024-12209 and assigned a CVSS sc ... Read more
-
security.nl
QNAP verhelpt lek dat remote aanvaller commando's op NAS laat uitvoeren
QNAP heeft vandaag updates voor de eigen NAS-apparaten uitgebracht die meerdere kwetsbaarheden verhelpen,. waaronder een beveiligingslek dat een remote aanvaller de mogelijkheid geeft om willekeurige ... Read more
-
TheCyberThrone
SonicWall addressed half a dozen vulnerabilities in SMA 100 series
SonicWall has released patches for several (six) vulnerabilities impacting its SMA 100 series SSL-VPN products. These flaws range from path traversal issues inherited from the Apache HTTP Server to cr ... Read more
-
Cybersecurity News
Earth Minotaur: MOONSHINE Exploit Kit and DarkNimbus Backdoor Threaten Multi-Platform Security
A sophisticated cyber campaign orchestrated by the threat actor Earth Minotaur has been uncovered by Trend Micro researchers, exposing their reliance on the MOONSHINE exploit kit and a previously unre ... Read more
-
security.nl
Google dicht kritieke kwetsbaarheden in cellular baseband Pixel-telefoons
Google heeft twee kritieke kwetsbaarheden in Pixel-telefoons verholpen waardoor een aanvaller op afstand toestellen kan overnemen. De beveiligingslekken die remote code execution mogelijk maken bevind ... Read more
-
The Hacker News
Researchers Uncover Flaws in Popular Open-Source Machine Learning Frameworks
Artificial Intelligence / Vulnerability Cybersecurity researchers have disclosed multiple security flaws impacting open-source machine learning (ML) tools and frameworks such as MLflow, H2O, PyTorch, ... Read more
-
cert.pl
Vulnerabilities in Tungsten Automation TotalAgility software
CVE ID CVE-2024-7874 Publication date 06 December 2024 Vendor Tungsten Automation Product TotalAgility Vulnerable versions All through 7.9.0.25.0.954 Vulnerability type (CWE) Improper Neutralization o ... Read more
-
Cybersecurity News
Unpatched Zero-Day Vulnerability in Mitel MiCollab Exposes Businesses to Serious Security Risks
A newly disclosed zero-day vulnerability in the Mitel MiCollab collaboration platform has raised serious concerns regarding the security of sensitive business data. Discovered by security researchers ... Read more