CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Urgent Patch: Critical Lanscope Endpoint Manager RCE (CVE-2025-61932, CVSS 9.8) Under Active Exploitation
JPCERT/CC and the developer MOTEX Inc. have issued an urgent advisory for a critical remote code execution (RCE) vulnerability in Lanscope Endpoint Manager (On-Premises), tracked as CVE-2025-61932 wit ... Read more
-
Daily CyberSecurity
Critical TP-Link Omada Gateway Flaw (CVE-2025-6542, CVSS 9.3) Allows Unauthenticated Remote Command Execution
TP-Link Systems has released a new firmware update addressing four high- and critical-severity vulnerabilities in its popular Omada gateway series, including ER605, ER7206, ER8411, and others widely d ... Read more
-
Daily CyberSecurity
CVE-2025-55315: Critical 9.9/10 Flaw in ASP.NET Core Enables Unauthenticated Attack
Microsoft has confirmed the remediation of a critical security vulnerability in its ASP.NET Core product, identified as CVE-2025-55315, with an exceptionally high severity score of 9.9 out of 10. The ... Read more
-
Daily CyberSecurity
Emergency Fix: Microsoft Rushes Patch for Critical Windows Recovery Bug
The cumulative update KB5066835 released last week for Windows 11 versions 24H2 and 25H2 introduced several serious issues, including a bug preventing developers from accessing local network addresses ... Read more
-
Daily CyberSecurity
7-Zip Flaw (CVE-2025-11001) with Public Exploit Code Threatens Unpatched Systems
Researchers recently disclosed a path-traversal vulnerability (CVE-2025-11001) in the open-source archiver 7-Zip that allows attackers to craft malicious archives which, when opened with a vulnerable ... Read more
-
Daily CyberSecurity
Critical Windows Update KB5066835 Breaks Keyboards in Recovery Mode
Hardware indicator for volume shown at the top center WinRE, short for Windows Recovery Environment, is a dedicated system recovery mode that users access when encountering critical failures or when a ... Read more
-
The Cyber Express
CISA Adds Microsoft, Apple and Oracle Vulnerabilities to KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added five CVEs to its Known Exploited Vulnerabilities (KEV) catalog today, including Microsoft, Apple and Oracle vulnerabilities. The ... Read more
-
The Hacker News
Five New Exploited Bugs Land in CISA's Catalog — Oracle and Microsoft Among Targets
Oct 20, 2025Ravie LakshmananThreat Intelligence / Data Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added five security flaws to its Known Exploited Vulnerabil ... Read more
-
BleepingComputer
Over 75,000 WatchGuard security devices vulnerable to critical RCE
Nearly 76,000 WatchGuard Firebox network security appliances are exposed on the public web and still vulnerable to a critical issue (CVE-2025-9242) that could allow a remote attacker to execute code w ... Read more
-
BleepingComputer
CISA: High-severity Windows SMB flaw now exploited in attacks
CISA says threat actors are now actively exploiting a high-severity Windows SMB privilege escalation vulnerability that can let them gain SYSTEM privileges on unpatched systems. Tracked as CVE-2025-33 ... Read more