CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cyber Security News
Open Source Firewall pfsense Vulnerable to Remote Code Execution Attacks
A popular open-source firewall software pfSense vulnerability has been identified, allowing for remote code execution (RCE) attacks. The vulnerability, tracked as CVE-2022-31814, highlights potential ... Read more
-
The Hacker News
New Flaws in Sonos Smart Speakers Allow Hackers to Eavesdrop on Users
IoT Security / Wireless Security Cybersecurity researchers have uncovered weaknesses in Sonos smart speakers that could be exploited by malicious actors to clandestinely eavesdrop on users. The vulner ... Read more
-
Cyber Security News
Critical XSS Vulnerability In Roundcube Let Attackers Execute Arbitrary Code
Roundcube, a widely adopted open-source webmail application, is included by default in the popular cPanel web hosting control panel, leading to millions of installations worldwide. The software is com ... Read more
-
Help Net Security
Critical 1Password flaws may allow hackers to snatch your passwords (CVE-2024-42219, CVE-2024-42218)
Two vulnerabilities (CVE-2024-42219, CVE-2024-42218) affecting the macOS version of the popular 1Password password manager could allow malware to steal secrets stored in the software’s vaults and obta ... Read more
-
TheCyberThrone
HPE Aruba fixes Several Access Points vulnerabilities
HPE Aruba has released security updates to address multiple critical vulnerabilities in its Aruba Access Points running InstantOS and ArubaOS 10 that could potentially allow unauthorized remote attack ... Read more
-
Help Net Security
“0.0.0.0-Day” vulnerability affects Chrome, Safari and Firefox
A “0.0.0.0-Day” vulnerability affecting Chrome, Safari and Firefox can be – and has been – exploited by attackers to gain access to services on internal networks, Oligo Security researchers have revea ... Read more
-
Help Net Security
August 2024 Patch Tuesday forecast: Looking for a calm August release
July ended up being more ‘exciting’ than many of us wanted; we’re supposed to be in the height of summer vacation season. First, we had a large set of updates on Patch Tuesday, then we had to work thr ... Read more
-
TheCyberThrone
MongoDB fixes High severity vulnerability CVE-2024-7553
MongoDB has released patches for a high-severity vulnerability affecting multiple versions of its server and driver products that could allow a malicious local user to escalate their privileges, poten ... Read more
-
Cybersecurity News
SSHamble: runZero’s Open Source Tool to Secure Your SSH Implementations
Experts at runZero have uncovered numerous vulnerabilities related to poorly secured or improperly implemented SSH services, an unexpected discovery during their investigation of a backdoor in the XZ ... Read more
-
Cyber Security News
MongoDB Vulnerability Allows Attackers to Gain Complete Control of Windows Systems
A critical vulnerability, identified as CVE-2024-7553, has been discovered in MongoDB. It could potentially allow attackers to take complete control of Windows systems. This vulnerability arises from ... Read more