CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2025-1723: Zoho Patches Account Takeover Vulnerability in ADSelfService Plus
Zoho Corporation has released a security advisory addressing a critical account takeover vulnerability in its ADSelfService Plus identity security solution. The vulnerability, tracked as CVE-2025-1723 ...
-
Cybersecurity News
Vim Users Warned: Crafted TAR Files Could Trigger Code Execution (CVE-2025-27423)
A newly discovered vulnerability in the popular text editor Vim could allow malicious actors to execute arbitrary code on unsuspecting users’ systems. The flaw, tracked as CVE-2025-27423, resides with ...
-
Cybersecurity News
CVE-2024-0114: NVIDIA Addresses High-Severity HMC Vulnerability
Nvidia has issued a security update addressing two vulnerabilities in its Hopper HGX 8-GPU HMC, including a high-severity flaw that could allow unauthorized code execution, privilege escalation, and d ...
-
Cybersecurity News
Operation Sea Elephant Cyber-Espionage Campaign Targeting South Asia
A recent report from Qi’anxin Threat Intelligence Center exposes an advanced cyber-espionage campaign dubbed Operation Sea Elephant, which has been targeting research institutions, universities, and g ...
-
Cybersecurity News
Chrome 134 Update Addresses High-Risk Vulnerability (CVE-2025-1914)
The Google Chrome team has officially pushed Chrome 134 to the stable channel for Windows (134.0.6998.35/36), Mac (134.0.6998.44/45), and Linux (134.0.6998.35), bringing with it a critical set of secu ...
-
Cybersecurity News
CVE-2025-0912: Critical Flaw Exposes Over 100,000 WordPress Donation Sites to RCE
A severe security vulnerability has been discovered in GiveWP, the popular WordPress donation plugin, putting over 100,000 websites at significant risk. The vulnerability, tracked as CVE-2025-0912, ca ...
-
TheCyberThrone
CISA KEV Catalog update Part II – March 2025
On March 4, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) expanded its Known Exploited Vulnerabilities (KEV) catalog, including four additional vulnerabilities. These vulnerabiliti ...
-
Cybersecurity News
SharePoint Shadow: Havoc’s FUD Malware Conceals Cyber Attacks
Attack flow | Source: FortiGuard LabsA recent report from FortiGuard Labs has shed light on an advanced cyber campaign leveraging the open-source Havoc command-and-control (C2) framework to execute fu ...
-
Dark Reading
3 VMware Zero-Day Bugs Allow Sandbox Escape
Source: T. Schneider via ShutterstockBroadcom wants customers of its VMware ESXi, Workstation, and Fusion technologies to immediately apply patches it issued this week for three critical vulnerabiliti ...
-
Dark Reading
Serbian Police Hack Protester's Phone With Cellebrite Exploit Chain
Source: Dejan Krsmanovic via Alamy Stock PhotoSerbian law enforcement officials are using a Cellebrite mobile "information extraction" product in tandem with an exploit chain to target dissidents, inc ...