CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cyber Security News
Jfrog Artifactory Flaw Let Attackers Poison Artifact Caches
A critical vulnerability identified as CVE-2024-6915 has been discovered in JFrog Artifactory, a widely used repository manager. This flaw, categorized under CWE-20 (Improper Input Validation), allows ...
-
security.nl
Google waarschuwt voor actief aangevallen RCE-kwetsbaarheid in Android
Google waarschuwt voor een actief aangevallen kwetsbaarheid in de Androidkernel waardoor remote code execution (RCE) mogelijk is. Het techbedrijf heeft updates beschikbaar gemaakt, maar het beveiligin ...
-
Cyber Security News
Apache OFBiz Zero-Day Vulnerability Let Attackers Execute Remote Code
A critical zero-day vulnerability in Apache OFBiz, an open-source enterprise resource planning (ERP) system, has been discovered that could allow unauthenticated attackers to execute arbitrary code re ...
-
The Hacker News
Google Patches New Android Kernel Vulnerability Exploited in the Wild
Mobile Security / Vulnerability Google has addressed a high-severity security flaw impacting the Android kernel that it has been actively exploited in the wild. The vulnerability, tracked as CVE-2024- ...
-
The Hacker News
New Zero-Day Flaw in Apache OFBiz ERP Allows Remote Code Execution
Enterprise Security / Vulnerability A new zero-day pre-authentication remote code execution vulnerability has been disclosed in the Apache OFBiz open-source enterprise resource planning (ERP) system t ...
-
seclists.org
CyberDanube Security Research 20240805-0 | Multiple Vulnerabilities in JetPort Series
Full Disclosure mailing list archives CyberDanube Security Research 20240805-0 | Multiple Vulnerabilities in JetPort Series From: Thomas Weber via Fulldisclosure <fulldisclosure () seclists org> Date: ...
-
seclists.org
CVE-2024-40101 exploit: Reflected Cross-Site Scripting (XSS) on Microweber
Full Disclosure mailing list archives CVE-2024-40101 exploit: Reflected Cross-Site Scripting (XSS) on Microweber From: masquerad3r <masquerad3r () gmail com> Date: Mon, 5 Aug 2024 10:30:05 +0200 Hello ...
-
BleepingComputer
Google fixes Android kernel zero-day exploited in targeted attacks
Image: MidjourneyAndroid security updates this month patch 46 vulnerabilities, including a high-severity remote code execution (RCE) exploited in targeted attacks. The zero-day, tracked as CVE-2024-36 ...
-
Dark Reading
20K Ubiquiti IoT Cameras & Routers Are Sitting Ducks for Hackers
Source: Nirbokphoto.com via Alamy Stock PhotoTens of thousands of small office/home office (SOHO) devices sold by Ubiquiti Inc. are vulnerable on the open Internet to a five-year-old bug, researchers ...
-
Dark Reading
Critical Apache OfBiz Vulnerability Allows Preauth RCE
Brian Jackson via Alamy Stock PhotoA critical pre-authentication remote code execution (RCE) security vulnerability in Apache OFBiz could open organizations to data theft, lateral movement by threat a ...