CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
Hewlett Packard Enterprise warns of critical StoreOnce auth bypass
Hewlett Packard Enterprise (HPE) has issued a security bulletin to warn about eight vulnerabilities impacting StoreOnce, its disk-based backup and deduplication solution. Among the flaws fixed this ti ...
-
The Register
Google quietly pushes emergency fix for Chrome 0-day as exploit runs wild
Google revealed Monday that it had quietly deployed a configuration change last week to block active exploitation of a Chrome zero-day. Google Threat Analysis Group (TAG) team members Clement Lecigne ...
-
Cyber Security News
10-Year-Old Roundcube RCE Vulnerability Let Attackers Execute Malicious Code
A decade-old critical security vulnerability has been discovered in Roundcube Webmail that could allow authenticated attackers to execute arbitrary code on vulnerable systems, potentially affecting mi ...
-
europa.eu
Cyber Brief 25-06 - May 2025
Cyber Brief (May 2025)June 3, 2025 - Version: 1TLP:CLEARExecutive summaryWe analysed 328 open source reports for this Cyber Brief1.Relating to cyber policy and law enforcement, in Europe, seven EU Mem ...
-
TheCyberThrone
CVE-2025-5419 Zero-Day Vulnerability in Chrome’s V8 Engine
CVE-2025-5419 is a critical zero-day vulnerability discovered in Google Chrome’s V8 JavaScript engine, the core component responsible for executing JavaScript code in the browser. This flaw enables ou ...
-
Cyber Security News
Android Security Update – Patch for Vulnerabilities that Allows Privilege Escalation
Google has released a comprehensive security update for Android devices addressing multiple high-severity vulnerabilities that could allow privilege escalation and remote code execution. The update ta ...
-
BleepingComputer
CISA warns of ConnectWise ScreenConnect bug exploited in attacks
CISA is alerting federal agencies in the U.S. of hackers exploiting a recently patched ScreenConnect vulnerability that could lead to executing remote code on the server. The agency is warning that fo ...
-
TheCyberThrone
CISA Adds Five New Vulnerabilities to KEV Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog, adding five new vulnerabilities that pose a high risk to federal agencies an ...
-
seclists.org
CVE-2025-45542: Time-Based Blind SQL Injection in CloudClassroom PHP Project v1.0
Full Disclosure mailing list archives From: Sanjay Singh <sanjay70023 () gmail com> Date: Fri, 30 May 2025 22:58:18 +0530 Hello Full Disclosure list, I am sharing details of a newly assigned CVE affec ...
-
seclists.org
Local information disclosure in apport and systemd-coredump
Full Disclosure mailing list archives From: Qualys Security Advisory via Fulldisclosure <fulldisclosure () seclists org> Date: Thu, 29 May 2025 17:26:22 +0000 Qualys Security Advisory Local informatio ...