CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CISA KEV Catalog Update Part IV- November 2024
The U.S. CISA added the following vulnerabilities to its Known Exploited Vulnerabilities catalogCVE-2024-1212 with a CVSS score of 10 and CWE-78, is a Progress Kemp LoadMaster OS command injection iss ... Read more
-
security.nl
Broadcom meldt actief misbruik van kritiek lek in VMware vCenter Server
Aanvallers maken actief misbruik van twee kwetsbaarheden in VMware vCenter Server, waaronder een kritiek beveiligingslek dat het voor ongeauthenticeerde aanvallers mogelijk maakt om op afstand code op ... Read more
-
security.nl
Oracle komt met noodupdate voor actief aangevallen lek in Agile PLM
Oracle heeft buiten de vaste patchcyclus om een noodupdate uitgebracht voor een actief aangevallen kwetsbaarheid in Agile Product Lifecycle Management (PLM). De aanvallen vonden al voor het uitkomen v ... Read more
-
Cybersecurity News
Phobos Ransomware Administrator Extradited to US to Face Charges
Evgenii Ptitsyn, a Russian national, faces a 13-count indictment for his alleged role in a global ransomware scheme that extorted millions from over 1,000 victims.In a significant victory for internat ... Read more
-
The Hacker News
Warning: VMware vCenter and Kemp LoadMaster Flaws Under Active Exploitation
Vulnerability / Data Security Now-patched security flaws impacting Progress Kemp LoadMaster and VMware vCenter Server have come under active exploitation in the wild, it has emerged. The U.S. Cybersec ... Read more
-
Cybersecurity News
From CVE to PoC: A Collection Maps Windows Privilege Escalation Landscape
Security researcher Michael Zhmaylo has assembled a comprehensive collection of publicly disclosed exploits for Local Privilege Escalation (LPE) vulnerabilities affecting Microsoft Windows operating s ... Read more
-
Cybersecurity News
CVE-2024-52308: GitHub CLI Vulnerability Could Allow Remote Code Execution
A critical security vulnerability (CVE-2024-52308) in the GitHub Command Line Interface (CLI) has been identified, potentially enabling remote code execution (RCE) on users’ workstations. This vulnera ... Read more
-
Cybersecurity News
LibreNMS Vulnerability (CVE-2024-51092): Mitigating the Risk of Server Compromise
A recent security advisory from the LibreNMS project has revealed a severe vulnerability (CVE-2024-51092) affecting versions up to 24.9.1 of the widely-used network monitoring platform. The flaw, rate ... Read more
-
Cybersecurity News
Actively Exploited VMware Vulnerabilities (CVE-2024-38812 & CVE-2024-38813) Threaten Virtualized Infrastructure
Broadcom has updated an urgent security advisory following confirmation of in-the-wild exploitation of two critical vulnerabilities affecting its vCenter Server platform: CVE-2024-38812 and CVE-2024-3 ... Read more
-
Cybersecurity News
Trio of Apache Tomcat Flaws Disclosed: Authentication Bypass, HTTP/2 Request Mix-Up, and XSS Flaw
The Apache Software Foundation has recently disclosed three new vulnerabilities affecting Apache Tomcat, a widely-used open-source web server and servlet container. These vulnerabilities, ranging from ... Read more