CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
Jenkins Patches Critical Vulnerability CVE-2024-43044
Jenkins has released an urgent advisory detailing two vulnerabilities, that expose Jenkins instances to arbitrary file read and unauthorized access risks,The critical one of the two vulnerabilities, t ...
-
The Cyber Express
Critical 1Password Vulnerability: Hackers Could Exploit Security Flaw to Access Unlock Keys
AgileBits, the developer behind the 1Password password manager, has disclosed a severe security vulnerability that could potentially allow attackers to extract sensitive information from macOS users. ...
-
cert.pl
Vulnerability in KAON AR2140 routers firmware
CVE ID CVE-2024-3659 Publication date 08 August 2024 Vendor KAON Group Product AR2140 Vulnerable versions From 3.2.46 before 4.2.16 Vulnerability type (CWE) Improper Neutralization of Special Elements ...
-
The Hacker News
Windows Downgrade Attack Risks Exposing Patched Systems to Old Vulnerabilities
Windows Security / Vulnerability Microsoft said it is developing security updates to address two loopholes that it said could be abused to stage downgrade attacks against the Windows update architectu ...
-
Help Net Security
“Perfect” Windows downgrade attack turns fixed vulnerabilities into zero-days
A researcher has developed a downgrade attack that can make Windows machines covertly, persistently and irreversibly vulnerable, even if they were fully patched before that. A downgrade attack exploit ...
-
Cyber Security News
Cisco Software Manager Password Change Vulnerability Let Hackers Change password
A critical vulnerability in Cisco’s Smart Software Manager On-Prem (SSM On-Prem) has surfaced, allowing unauthenticated, remote attackers to change user passwords, including those of administrative us ...
-
Cyber Security News
AMD Patches Multiple Memory Vulnerabilities That Leads Corrupt The Guest VM
Three potential vulnerabilities in Secure Encrypted Virtualization – Secure Nested Paging (SEV-SNP) could allow an attacker to read or corrupt the memory of a guest VM. To establish an isolated execut ...
-
security.nl
Windows kwetsbaar voor downgrade-aanval via Windows Update
Windows is kwetsbaar voor een downgrade-aanval, waarbij een aanvaller die toegang tot een systeem heeft via Windows Update aanwezige patches permanent kan verwijderen. Het besturingssysteem denkt na d ...
-
Cybersecurity News
NHS Supplier Fined £6M for Data Breach After Ransomware Attack
British regulators have imposed a preliminary fine exceeding £6 million on Advanced, a service provider for the National Health Service (NHS). The company failed to adequately protect the information ...
-
security.nl
Cisco ip-telefoons via kritieke kwetsbaarheid op afstand over te nemen
Ip-telefoons van Cisco zijn via verschillende kritieke kwetsbaarheden op afstand door een ongeauthenticeerde aanvaller volledig over te nemen en een update zal het bedrijf niet beschikbaar maken. Als ...