CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2024-10025 (CVSS 9.1): Critical Flaw in SICK Products Exposes Systems to Remote Attacks
A newly disclosed vulnerability in multiple SICK products, tracked as CVE-2024-10025, has raised significant cybersecurity concerns across industries relying on the company’s automation and sensor tec ... Read more
-
TheCyberThrone
Trend Micro fixes Critical Vulnerability CVE-2024-48904
Trend Micro has patched a command injection vulnerability in its Cloud Edge appliance that could allow a remote attacker to execute arbitrary code on affected devices without authentication.This vulne ... Read more
-
TheCyberThrone
Grafana fixes a critical vulnerability CVE-2024-9264
Grafana has been affected by critical security vulnerability , could allow attackers to execute arbitrary code on affected systems, potentially leading to complete system compromise.The vulnerability ... Read more
-
Cybersecurity News
Critical Flaw in Synology Camera Firmware Expose Devices to RCE and DoS Attacks
Synology has issued a security advisory, Synology-SA-24:17, warning of critical vulnerabilities in several of its camera firmware products, including Synology Camera BC500, TC500, and CC400W. The vuln ... Read more
-
Cybersecurity News
CVE-2024-48914 (CVSS 9.1): Critical File Read Flaw Discovered in Vendure E-commerce Platform
Vendure, a popular open-source headless commerce platform, has patched a critical security vulnerability that could allow attackers to read arbitrary files from the server, potentially exposing sensit ... Read more
-
The Register
Jetpack fixes 8-year-old flaw affecting millions of WordPress sites
in brief A critical security update for the near-ubiquitous WordPress plugin Jetpack was released last week. Site administrators should ensure the latest version is installed to keep their sites secur ... Read more
-
Dark Reading
MacOS Safari 'HM Surf' Exploit Exposes Camera, Mic, Browser Data
Source: Delphotos via Alamy Stock PhotoA security weakness in the Safari browser on macOS devices might have exposed users to spying, data theft, and other forms of malware.The issue is enabled by the ... Read more
-
The Cyber Express
Dumbest Thing in Security This Week: The Most Exploited Vulnerability Is…
Cyble’s weekly sensor report is an always fascinating look at the vulnerabilities that threat actors are actively exploiting. While new vulnerabilities are quickly exploited, older ones are still expl ... Read more
-
BleepingComputer
Intel, AMD CPUs on Linux impacted by newly disclosed Spectre bypass
The latest generations of Intel processors, including Xeon chips, and AMD's older microarchitectures on Linux are vulnerable to new speculative execution attacks that bypass existing ‘Spectre’ mitigat ... Read more
-
TheCyberThrone
Spring framework fixes a High severity vulnerability CVE-2024-38819
Spring Framework has been identified with a new path traversal vulnerability, poses a significant risk to applications serving static resources via WebMvc.fn or WebFlux.fn functional web frameworks.Th ... Read more