CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
How Breaches Start: Breaking Down 5 Real Vulns
Not every security vulnerability is high risk on its own - but in the hands of an advanced attacker, even small weaknesses can escalate into major breaches. These five real vulnerabilities, uncovered ...
-
Cyber Security News
FastCGI Library Vulnerability Exposes Embedded Devices to Code Execution Attacks
A critical vulnerability in the FastCGI library could allow attackers to execute arbitrary code on embedded devices. The flaw, tracked as CVE-2025-23016 with a CVSS score of 9.3, affects all FastCGI f ...
-
Cyber Security News
React Router Vulnerabilities Let Attackers Spoof Contents & Modify Values
Significant security flaws have been discovered in React Router, a widely-used routing library for React applications, potentially allowing attackers to corrupt content, poison caches, and manipulate ...
-
Help Net Security
Critical SAP NetWeaver flaw exploited by suspected initial access broker (CVE-2025-31324)
CVE-2025-31324, a critical vulnerability in the SAP NetWeaver platform, is being actively exploited by attackers to upload malicious webshells to enable unauthorized file uploads and code execution. T ...
-
Cyber Security News
CISA Warns Planet Technology Network Products Let Attackers Manipulate Devices
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical advisory warning of multiple high-severity vulnerabilities in Planet Technology network products that could allow atta ...
-
security.nl
Mandiant: kwetsbaarheden in vpn-software vaakst aangevallen vorig jaar
Kwetsbaarheden in vpn-software blijven een zeer populair doelwit van aanvallers, zo stelt Mandiant. De helft van alle cyberincidenten die het securitybedrijf vorig jaar onderzocht begonnen via kwetsba ...
-
Cyber Security News
Fog Ransomware Directory With Active Directory Exploitation Tools & Scripts Uncovered
Cybersecurity analysts have uncovered an open directory linked to the Fog ransomware group, revealing a comprehensive toolkit used by threat actors to compromise corporate networks. The directory, dis ...
-
The Hacker News
Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised
Web Application Security / Vulnerability Threat actors have been observed exploiting two newly disclosed critical security flaws in Craft CMS in zero-day attacks to breach servers and gain unauthorize ...
-
TheCyberThrone
CVE-2025-32818 impacts SonicOS SSLVPN
CVE-2025-32818 is a critical vulnerability affecting the SonicOS SSLVPN Virtual Office interface. This flaw allows remote, unauthenticated attackers to exploit a Null Pointer Dereference, causing the ...
-
Cyber Security News
New iOS Critical Vulnerability That Could Brick iPhones With a Single Line of Code
A critical vulnerability in iOS could allow malicious applications to disable iPhones with just a single line of code permanently. The vulnerability, assigned CVE-2025-24091, leverages the operating s ...