CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2024-9632: 18-Year-Old Bug in X.Org Server Leaves Systems Vulnerable to Attack
A high-severity vulnerability was found in the X.Org Server, the popular display server for Linux and other Unix-like operating systems. Tracked as CVE-2024-9632, this flaw has been lurking in the cod ... Read more
-
Cybersecurity News
Hikvision Patches Security Flaw in Network Cameras, Preventing Cleartext Credential Transmission
Hikvision, a leading provider of network cameras and surveillance systems, has released firmware updates to address a security vulnerability that could expose users’ Dynamic DNS credentials. The vulne ... Read more
-
Cybersecurity News
Critical Vulnerability in Waitress WSGI Server: CVE-2024-49768 – What You Need to Know
The Pylons Project has released a crucial security advisory addressing a vulnerability in the Waitress WSGI server, tracked as CVE-2024-49768. This vulnerability, assigned a CVSS score of 9.1, represe ... Read more
-
BleepingComputer
Hackers target critical zero-day vulnerability in PTZ cameras
Hackers are attempting to exploit two zero-day vulnerabilities in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras used in industrial, healthcare, business conferences, government, and courtroom s ... Read more
-
TheCyberThrone
ServiceNow fixes CVE-2024-8923 and CVE-2024-8924
ServiceNow has addressed two significant vulnerabilities, CVE-2024-8923 and CVE-2024-8924, which could enable unauthorized remote access, potentially exposing sensitive data, and compromising platform ... Read more
-
seclists.org
xlibre Xnest security advisory & bugfix releases
Full Disclosure mailing list archives From: "Enrico Weigelt, metux IT consult" <info () metux net> Date: Thu, 31 Oct 2024 16:40:24 +0100 XLibre project security advisory ------------------------------ ... Read more
-
seclists.org
APPLE-SA-10-29-2024-1 Safari 18.1
Full Disclosure mailing list archives From: Apple Product Security via Fulldisclosure <fulldisclosure () seclists org> Date: Tue, 29 Oct 2024 16:29:03 -0700 -----BEGIN PGP SIGNED MESSAGE----- Hash: SH ... Read more
-
seclists.org
SEC Consult SA-20241030-0 :: Query Filter Injection in Ping Identity PingIDM (formerly known as ForgeRock Identity Management) (CVE-2024-23600)
Full Disclosure mailing list archives From: SEC Consult Vulnerability Lab via Fulldisclosure <fulldisclosure () seclists org> Date: Wed, 30 Oct 2024 09:57:55 +0000 SEC Consult Vulnerability Lab Securi ... Read more
-
BleepingComputer
LiteSpeed Cache WordPress plugin bug lets hackers get admin access
The free version of the popular WordPress plugin LiteSpeed Cache has fixed a dangerous privilege elevation flaw on its latest release that could allow unauthenticated site visitors to gain admin right ... Read more
-
The Hacker News
New LightSpy Spyware Version Targets iPhones with Increased Surveillance Tactics
Spyware / Mobile Security Cybersecurity researchers have discovered an improved version of an Apple iOS spyware called LightSpy that not only expands on its functionality, but also incorporates destru ... Read more