CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CVE-2025-32445 Privilege Escalation Flaw in Argo Events
CVE-2025-32445 is a critical privilege escalation vulnerability affecting Argo Events, an event-driven workflow automation framework designed for Kubernetes environments. The flaw enables users with p ...
-
BleepingComputer
Critical Erlang/OTP SSH RCE bug now has public exploits, patch now
Public exploits are now available for a critical Erlang/OTP SSH vulnerability tracked as CVE-2025-32433, allowing unauthenticated attackers to remotely execute code on impacted devices. Researchers at ...
-
security.nl
Vpn-accounts op SonicWall-gateways sinds januari doelwit van aanvallen
Vpn-accounts op SonicWall-gateways zijn sinds januari het doelwit van aanvallen, zo stelt securitybedrijf Arctic Wolf. Mogelijk combineren de aanvallers gecompromitteerde vpn-accounts met een vier jaa ...
-
security.nl
Asus waarschuwt voor kritieke AiCloud-kwetsbaarheid in wifi-routers
Asus waarschuwt voor een kritieke AiCloud-kwetsbaarheid die in verschillende wifi-routers aanwezig is en heeft firmware-updates uitgebracht om het probleem te verhelpen. Via AiCloud kunnen gebruikers ...
-
The Hacker News
ASUS Confirms Critical Flaw in AiCloud Routers; Users Urged to Update Firmware
Network Security / Vulnerability ASUS has disclosed a critical security flaw impacting routers with AiCloud enabled that could permit remote attackers to perform unauthorized execution of functions on ...
-
Daily CyberSecurity
GitHub Enterprise Server Vulnerabilities Expose Risk of Code Execution and Data Leaks
GitHub has released security updates to address several vulnerabilities in GitHub Enterprise Server, including a high-severity flaw that could allow attackers to execute arbitrary code. Organizations ...
-
cloudsecurityalliance.org
Virtual Patching: How to Protect VMware ESXi from Zero-Day Exploits
Originally published by Vali Cyber. Written by Nathan Montierth. Recently, three VMware zero-day vulnerabilities (CVE-2025-22224, CVE-2025-22225, CVE-2025-22226) were patched amid concerns of active e ...
-
Cyber Security News
Leaked KeyPlug Malware Infrastructure Contains Exploit Scripts to Hack Fortinet Firewall and VPN
A server briefly linked to the notorious KeyPlug malware has inadvertently exposed a comprehensive arsenal of exploitation tools specifically designed to target Fortinet firewall and VPN appliances. T ...
-
BleepingComputer
ASUS warns of critical auth bypass flaw in routers using AiCloud
ASUS is warning about an authentication bypass vulnerability in routers with AiCloud enabled that could allow remote attackers to perform unauthorized execution of functions on the device. The vulnera ...
-
BleepingComputer
SonicWall SMA VPN devices targeted in attacks since January
A remote code execution vulnerability affecting SonicWall Secure Mobile Access (SMA) appliances has been under active exploitation since at least January 2025, according to cybersecurity company Arcti ...