CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2024-45784: Apache Airflow Vulnerability Exposes Sensitive Data in Logs
A vulnerability in the popular workflow management platform Apache Airflow could inadvertently expose sensitive configuration data, potentially compromising system security.The flaw, tracked as CVE-20 ... Read more
-
TheCyberThrone
TheCyberThrone Security Weekly Review – November 16, 2024
Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the weeks ending Saturday, November 16, 2024.GitLab fixes High seve ... Read more
-
TheCyberThrone
PostgreSQL fixes CVE-2024-10979
Security researchers have discovered that a vulnerability in PostgreSQL has the potential to compromise the security of countless databases worldwideThis vulnerability is tracked as CVE-2024-10979, w ... Read more
-
The Hacker News
PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released
Vulnerability / Network Security Palo Alto Networks has released new indicators of compromise (IoCs) a day after the network security vendor confirmed that a new zero-day vulnerability impacting its P ... Read more
-
Cybersecurity News
Zero-Day Vulnerability in FortiClient Exploited by BrazenBamboo APT
Image: VolexityCybersecurity firm Volexity has uncovered a zero-day vulnerability in Fortinet’s Windows VPN client, FortiClient, being exploited by the BrazenBamboo Advanced Persistent Threat (APT) gr ... Read more
-
TheCyberThrone
Top 15 Most Exploited Vulnerabilities in 2023
In a joint cybersecurity advisory, the security agencies across the world have identified the most exploited vulnerabilities of 2023. This advisory, coauthored by the Cybersecurity and Infrastructure ... Read more
-
Cybersecurity News
CVE-2024-49369 (CVSS 9.8): Critical Flaw in Icinga 2 Allows for Impersonation and RCE
Icinga releases urgent security updates to address a critical TLS certificate validation bypass vulnerability affecting all versions since 2.4.0.A critical vulnerability (CVE-2024-49369) has been disc ... Read more
-
The Register
Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit
A critical zero-day vulnerability in Palo Alto Networks' firewall management interface that can allow an unauthenticated attacker to remotely execute code is now officially under active exploitation. ... Read more
-
BleepingComputer
Botnet exploits GeoVision zero-day to install Mirai malware
A malware botnet is exploiting a zero-day vulnerability in end-of-life GeoVision devices to compromise and recruit them for likely DDoS or cryptomining attacks. The flaw is tracked as CVE-2024-11120 a ... Read more
-
Hackread - Latest Cybersecurity, Tech, Crypto & Hacking News
8.8 Rated PostgreSQL Vulnerability Puts Databases at Risk
Cybersecurity researchers at Varonis have identified a serious security vulnerability in PostgreSQL that could lead to data breaches and system compromise. Learn about the technical details, affected ... Read more