CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Chrome High-Severity Vulnerabilities Allows Memory Manipulation and Arbitrary Code Execution
Google has issued an urgent security update for its Chrome browser, patching several vulnerabilities, including a high-severity vulnerability that could allow attackers to manipulate memory and execut ... Read more
-
Daily CyberSecurity
Critical Flaw in Wix’s New AI Platform Base44 Allowed Unauthorized Access to Private Enterprise Apps
Image: Wiz Research In a significant finding that highlights the risks associated with emerging AI development platforms, Wiz Research has uncovered a critical vulnerability in Base44, a popular vibe ... Read more
-
Daily CyberSecurity
Critical RCE Flaw (CVE-2025-5394) in “Alone” WordPress Theme Actively Exploited, Allowing Full Site Takeover
A critical-severity vulnerability in the popular Alone – Charity Multipurpose Non-profit WordPress Theme has left thousands of WordPress sites at risk of remote code execution (RCE), according to a re ... Read more
-
Daily CyberSecurity
Gunra Ransomware Expands to Linux: New Variant Unleashes 100-Thread Encryption & Stealthy Tactics
The files encrypted by Gunra Ransomware | Image: Trend Micro Trend Micro has issued a spotlight on the evolving Gunra ransomware, which has extended its reach to Linux-based systems, dramatically broa ... Read more
-
Daily CyberSecurity
TP-Link Archer C50 (EOL) Exposed: Hardcoded DES Key Allows Sensitive Config Decryption (CVE-2025-6982)
The CERT Coordination Center (CERT/CC) has issued a vulnerability note concerning a flaw in the TP-Link Archer C50 router, identified as CVE-2025-6982. The vulnerability arises from the use of hardcod ... Read more
-
Daily CyberSecurity
BeyondTrust Privilege Management for Windows: Two High-Severity Flaws Allow Local Privilege Escalation
BeyondTrust, a global leader in intelligent identity and access security, has issued two advisories addressing two local privilege escalation vulnerabilities in its Privilege Management for Windows pr ... Read more
-
BleepingComputer
Hackers exploit SAP NetWeaver bug to deploy Linux Auto-Color malware
Hackers were spotted exploiting a critical SAP NetWeaver vulnerability tracked as CVE-2025-31324 to deploy the Auto-Color Linux malware in a cyberattack on a U.S.-based chemicals company. Cybersecurit ... Read more
-
CybersecurityNews
Critical CodeIgniter Vulnerability Exposes Million of Webapps to File Upload Attacks
A critical security vulnerability has been discovered in CodeIgniter4’s ImageMagick handler, exposing potentially millions of web applications to command injection attacks through malicious file uploa ... Read more
-
CybersecurityNews
SonicWall SMA100 Series N-day Vulnerabilities Technical Details Revealed
Multiple critical vulnerabilities affecting SonicWall’s SMA100 series SSL-VPN appliances, highlighting persistent security flaws in network infrastructure devices. The vulnerabilities, designated CVE- ... Read more
-
cert.pl
Vulnerability in TSplus Remote Access software
Vulnerability in TSplus Remote Access software CVE ID CVE-2025-5922 Publication date 29 July 2025 Vendor TSplus Product TSplus Remote Access Vulnerable versions All before v18.40.6.17 / v17.2025.6.27 ... Read more