Cyber Newsroom Feed

The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.

CVE News RSS Feed
  • cert.pl
Vulnerability in CoolKit Technology eWeLink mobile application (Android & iOS)

CVE ID CVE-2023-6998 Publication date 30 December 2023 Vendor CoolKit Technology Product eWeLink (Android & iOS) Vulnerable versions All below 5.2.0 Vulnerability type (CWE) Improper Privilege Managem ... Read more

Published Date: Dec 29, 2023 (1 year, 6 months ago)
CVE-2023-6998
  • cert.pl
Vulnerability in MegaBIP and SmodBIP software

CVE ID CVE-2023-5378 Publication date 20 December 2023 Vendor Jan Syski Product SmodBIP and MegaBIP Vulnerable versions SmodBIP: all, MegaBIP: all through 4.36.2 Vulnerability type (CWE) Improper Inpu ... Read more

Published Date: Dec 20, 2023 (1 year, 7 months ago)
CVE-2023-5378
  • cert.pl
Russian Foreign Intelligence Service (SVR) Cyber Actors Use JetBrains TeamCity CVE in Global Targeting

The Federal Bureau of Investigation (FBI), US Cybersecurity & Infrastructure Security Agency (CISA), National Security Agency (NSA), Polish Military Counterintelligence Service (SKW), CERT Polska (CER ... Read more

Published Date: Dec 13, 2023 (1 year, 7 months ago)
CVE-2023-42793
  • cert.pl
Vulnerability in SAS 9.4 software

CVE ID CVE-2023-4932 Publication date 12 December 2023 Vendor SAS Institute Product SAS Vulnerable versions 9.4_M7 and 9.4_M8 Vulnerability type (CWE) Reflected XSS (CWE-79) Report source Report to CE ... Read more

Published Date: Dec 12, 2023 (1 year, 7 months ago)
CVE-2023-4932
  • huntress.com
MFT Exploitation and Adversary Operations | Huntress

Threat actors of varying types continue to target managed file transfer (MFT) applications for exploitation. The latest concerning MFT vulnerability was identified by Converge Technology Solutions, or ... Read more

Published Date: Nov 29, 2023 (1 year, 7 months ago)
  • 0patch.com
Free Micropatches For Microsoft Access Forced Authentication Through Firewall (0day)

Update 2/14/2024: Either January 30 or February 1 Office update brought a fix for this issue: now, Access warns the user for any ODBC connection to SQL Server. Our patch only shows a warning when such ... Read more

Published Date: Nov 25, 2023 (1 year, 8 months ago)
CVE-2023-36563 CVE-2023-28244
  • 0patch.com
We Patched CVE-2023-28244 Before It Was Cool

How Our Patch For CVE-2022-33647 Fixed CVE-2023-28244 Five Months In Advance By Blaz Satler of 0patch TeamThe Initial Vulnerability - CVE-2022-33647 In September 2022, Microsoft released patches for C ... Read more

Published Date: Nov 16, 2023 (1 year, 8 months ago)
CVE-2023-28244 CVE-2022-33647
  • 0patch.com
Micropatches Released For Microsoft WordPad Information Disclosure (CVE-2023-36563)

October 2023 Windows Updates brought a patch for CVE-2023-36563, an "Information Disclosure" vulnerability in WordPad that was found by Microsoft Threat Intelligence as being exploited in the wild. A ... Read more

Published Date: Nov 10, 2023 (1 year, 8 months ago)
CVE-2023-36563 CVE-2023-28244
  • huntress.com
Critical Vulnerability: SysAid CVE-2023-47246 | Huntress

On November 8, 2023, SysAid published an advisory expressing that their on-premise server software had a previously undisclosed vulnerability and is aware of public in-the-wild exploitation. Days prio ... Read more

Published Date: Nov 10, 2023 (1 year, 8 months ago)
CVE-2023-47246
  • huntress.com
Critical Vulnerability: SysAid CVE-2023-47246 | Huntress

On November 8, 2023, SysAid published an advisory expressing that their on-premise server software had a previously undisclosed vulnerability and is aware of public in-the-wild exploitation. Days prio ... Read more

Published Date: Nov 10, 2023 (1 year, 8 months ago)
CVE-2023-47246

Filters

Showing 10 of 6719 Results