CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Amazon WorkSpaces For Linux Vulnerability Let Attackers Extract Valid Authentication Token
Amazon has disclosed a significant security vulnerability in its WorkSpaces client for Linux that could allow unauthorized users to extract valid authentication tokens and gain unauthorized access to ... Read more
-
CrowdStrike.com
From Domain User to SYSTEM: Analyzing the NTLM LDAP Authentication Bypass Vulnerability (CVE-2025-54918)
In September 2025, a critical vulnerability (CVE-2025-54918) was discovered affecting domain controllers running LDAP or LDAPS services. This vulnerability allows attackers to elevate privileges from ... Read more
-
Help Net Security
November 2025 Patch Tuesday forecast: Windows Exchange Server EOL?
October 2025 Patch Tuesday was one for the record books in so many ways. There was a big push by Microsoft to fix as many open vulnerabilities as possible in products that were reaching end-of-life (E ... Read more
-
TheCyberThrone
Australian Signals Directorate Warns of Attacks Exploiting Cisco Vulnerability
November 7, 2025The Australian Signals Directorate (ASD) recently issued a high-severity alert about an ongoing cyber attack campaign exploiting a critical vulnerability in Cisco IOS XE devices, track ... Read more
-
CybersecurityNews
NVIDIA NVApp for Windows Vulnerability Let Attackers Execute Malicious Code
NVIDIA has patched a critical vulnerability in its App for Windows that could allow local attackers to execute arbitrary code and escalate privileges on affected systems. Tracked as CVE-2025-23358, th ... Read more
-
CybersecurityNews
Cisco Identity Services Engine Vulnerability Allows Attackers to Restart ISE Unexpectedly
A critical vulnerability in Cisco Identity Services Engine (ISE) could allow remote attackers to crash the system through a crafted sequence of RADIUS requests. The flaw CVE-2024-20399, lies in how IS ... Read more
-
TheCyberThrone
Cisco UCCX Vulnerabilities Alert
November 7, 2025Cisco Unified Contact Center Express (UCCX) recently came under scrutiny due to two critical vulnerabilities that pose serious risks to organizations relying on this platform for manag ... Read more
-
Daily CyberSecurity
OCI Fixes Container Escape Vulnerabilities in runc (CVE-2025-31133, CVE-2025-52565, CVE-2025-52881)
The Open Container Initiative (OCI) has released security updates to address three high-severity vulnerabilities affecting its container runtime runc, including flaws that could lead to container esca ... Read more
-
Daily CyberSecurity
High-Severity Cisco ISE Flaw (CVE-2025-20343) Allows Unauthenticated DoS via Crafted RADIUS Requests
Cisco has released a security update to address a high-severity vulnerability (CVE-2025-20343, CVSS 8.6) affecting its Identity Services Engine (ISE) — a core network access control platform used by e ... Read more
-
Daily CyberSecurity
Amazon Fixes High-Severity Authentication Token Exposure in WorkSpaces Client for Linux (CVE-2025-12779)
Amazon has released a security update for the WorkSpaces client for Linux, addressing a high-severity vulnerability (CVE-2025-12779) that could allow local users to extract valid authentication tokens ... Read more