CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
CISA adds Langflow Origin Validation Flaw to Known Exploited Vulnerabilities Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Langflow vulnerability, tracked as CVE-2025-34291, to its Known Exploited Vulnerabilities (KEV) Catalog, signaling ...
-
CybersecurityNews
CISA Warns of Microsoft Defender 0-Day Vulnerabilities Exploited in Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two critical Microsoft Defender vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, warning organizations o ...
-
TheCyberThrone
CISA adds Langflow and Trend Micro Apex One to KEV
May 22, 2026CVE-2025-34291 — Langflow Origin Validation Error (RCE)CVSS: 9.4CWE: CWE-346 — Origin Validation ErrorAffected Versions: Langflow ≤ 1.6.9Vulnerability SummaryResearchers at Obsidian Securi ...
-
SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 21
The Good | Joint Operations Dismantle Cybercrime Infrastructure, Infostealers & Malicious VPNs Over 200 individuals and another 382 suspects have been rounded up in Interpol’s Operation Ramz, an initi ...
-
SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 21
The Good | Joint Operations Dismantle Cybercrime Infrastructure, Infostealers & Malicious VPNs Over 200 individuals and another 382 suspects have been rounded up in Interpol’s Operation Ramz, an initi ...
-
cert.pl
Vulnerability in vifm software
Vulnerability in vifm software CVE ID CVE-2026-8997 Publication date 22 May 2026 Vendor vifm Product vifm Vulnerable versions From 0.12.1 through 0.14.3 Vulnerability type (CWE) Heap-based Buffer Over ...
-
security.nl
Drupal meldt actief misbruik van zeer kritiek SQL Injection-lek
De ontwikkelaars van het contentmanagementsysteem (CMS) Drupal waarschuwen voor actief misbruik van een zeer kritiek SQL Injection-lek (CVE-2026-9082). Via de kwetsbaarheid kan een aanvaller toegang t ...
-
NVISO Labs
Securing AI systems without overconfidence or fear – Part 2: Attack surfaces and the checkpoint flow
Document information Series Securing AI systems without overconfidence or fear Part 2 of 5 Title Attack surfaces and the checkpoint flow Date May 2026 Author Hussein Bahmad (NVISO) Reading time ~13 mi ...
-
security.nl
Kritieke Ubiquiti-lekken geven aanvaller toegang tot UniFi OS-apparaten
Netwerkfabrikant Ubiquiti heeft updates uitgerold voor vijf kwetsbaarheden waardoor aanvallers toegang tot UniFi OS-apparaten kunnen krijgen. De impact van drie beveiligingslekken is beoordeeld met ee ...
-
cert.pl
Vulnerabilities in STER software
Vulnerabilities in STER software CVE ID CVE-2026-25606 Publication date 22 May 2026 Vendor Centralny Instytut Ochrony Pracy - Państwowy Instytut Badawczy Product STER Vulnerable versions All before 9. ...