CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
High-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment Variables
Vulnerability / Database Security Cybersecurity researchers have disclosed a high-severity security flaw in the PostgreSQL open-source database system that could allow unprivileged users to alter envi ... Read more
-
The Hacker News
CISA Flags Critical Palo Alto Network Flaws Actively Exploited in the Wild
Network Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday warned that two more flaws impacting the Palo Alto Networks Expedition have come under act ... Read more
-
Cybersecurity News
Critical Laravel Flaw (CVE-2024-52301) Exposes Millions of Web Applications to Attack
A critical security vulnerability, CVE-2024-52301, has been identified in the Laravel framework, a popular web application framework known for its elegant syntax and comprehensive toolset for building ... Read more
-
Cybersecurity News
CVE-2024-10924 (CVSS 9.8): Authentication Bypass in Really Simple Security Plugin Affects 4 Million Sites
The Wordfence Threat Intelligence team identified a severe authentication bypass vulnerability (CVE-2024-10924) in the Really Simple Security plugin, including its Pro and Pro Multisite versions. This ... Read more
-
Cybersecurity News
CISA Flags Critical Exploits in Palo Alto Networks’ Expedition with Public PoC Code
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about two critical vulnerabilities in Palo Alto Networks Expedition that malicious actors are actively exploiti ... Read more
-
Cybersecurity News
macOS Security Compromised: Novel Exploit Bypasses Sandbox Protections
A newly discovered vulnerability in macOS could allow attackers to bypass critical security mechanisms and gain unauthorized access to sensitive files. This revelation comes from independent security ... Read more
-
Cybersecurity News
LodaRAT Strikes Again: New Campaign Targets Global Victims with Updated Capabilities
Researchers at Rapid7 have uncovered a fresh campaign using LodaRAT, a well-known remote access tool (RAT) that has been active since 2016. Initially developed for information gathering, LodaRAT has b ... Read more
-
The Register
Fortinet patches VPN app flaw that could give rogue users, malware a privilege boost
A now-patched, high-severity bug in Fortinet's FortiClient VPN application potentially allows a low-privilege rogue user or malware on a vulnerable Windows system to gain higher privileges from anothe ... Read more
-
BleepingComputer
CISA warns of more Palo Alto Networks bugs exploited in attacks
CISA warned today that two more critical security vulnerabilities in Palo Alto Networks' Expedition migration tool are now actively exploited in the wild. Attackers can use the two unauthenticated com ... Read more
-
Dark Reading
Varonis Warns of Bug Discovered in PostgreSQL PL/Perl
Source: tofino via Alamy Stock PhotoResearchers at Varonis discovered a vulnerability within Postgres language extension PL/Perl, allowing a user to set arbitrary environment variables in PostgreSQL s ... Read more