CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
SonicWall warns of critical access control flaw in SonicOS
SonicWall's SonicOS is vulnerable to a critical access control flaw that could allow attackers to gain access unauthorized access to resources or cause the firewall to crash. The flaw has received the ... Read more
-
The Hacker News
SonicWall Issues Critical Patch for Firewall Vulnerability Allowing Unauthorized Access
Vulnerability / Enterprise Security SonicWall has released security updates to address a critical flaw impacting its firewalls that, if successfully exploited, could grant malicious actors unauthorize ... Read more
-
InfoSec Write-ups
Uncovering CVE-2021–42013: The Forgotten RCE Vulnerability
The Persistent Risk of Unpatched Systems: Identifying Vulnerable Devices with ShodanIntroductionIn the ever-evolving landscape of cybersecurity, some vulnerabilities persist despite their age. One suc ... Read more
-
CVE-2024–31982: When a Simple Wiki Search Turns into a RCE Party
XWiki’s Sneaky Database Search Vulnerability & How I Found Vulnerable Instances on ShodanIn the vast ocean of web platforms, XWiki has been a beloved and versatile tool for building knowledge bases, w ... Read more
-
Hackread - Latest Cybersecurity, Tech, Crypto & Hacking News
NTLM Credential Theft Risk in Python Apps Threaten Windows Security
New research reveals critical vulnerabilities in Python applications for Windows including Snowflake, Gradio, Jupyter, and Streamlit that could allow hackers to steal NTLM credentials. Learn how to pr ... Read more
-
The Hacker News
Researchers Identify Over 20 Supply Chain Vulnerabilities in MLOps Platforms
Cybersecurity researchers are warning about the security risks in the machine learning (ML) software supply chain following the discovery of more than 20 vulnerabilities that could be exploited to tar ... Read more
-
The Hacker News
Critical Flaws in Traccar GPS System Expose Users to Remote Attacks
Software Security / Vulnerability Two security vulnerabilities have been disclosed in the open-source Traccar GPS tracking system that could be potentially exploited by unauthenticated attackers to ac ... Read more
-
Cybersecurity News
Hillstone Networks Addresses Critical RCE Vulnerability in WAF (CVE-2024-8073, CVSS 9.8)
Hillstone Networks, a global leader in network security solutions, has released a security advisory addressing a critical vulnerability (CVE-2024-8073) in its Web Application Firewall (WAF) product. T ... Read more
-
Help Net Security
Adversaries love bots, short-lived IP addresses, out-of-band domains
Fastly found 91% of cyberattacks – up from 69% in 2023 – targeted multiple customers using mass scanning techniques to uncover and exploit software vulnerabilities, revealing an alarming trend in atta ... Read more
-
Cybersecurity News
Critical Flaw Discovered in Popular Python Library Pandas
Information Stealer Malware on the Rise: ACSC Issues Urgent Cybersecurity WarningThe Australian Cyber Security Centre (ACSC) has issued a warning about the escalating threat of information stealer mal ... Read more