CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2024-56171 & CVE-2025-24928: Libxml2 Flaws Could Lead to Code Execution
Libxml2,a widely used XML parsing library developed for the GNOME project but also utilized across various platforms, including Linux, Windows, macOS, and Unix-based systems, has been found to contain ...
-
Cybersecurity News
Moxa PT Switches Vulnerable to CVE-2024-9404 Denial-of-Service Attack
Moxa, a leading provider of industrial networking solutions, has issued a security advisory regarding a critical denial-of-service (DoS) vulnerability affecting multiple models of its PT switches. The ...
-
Cybersecurity News
Exim Mail Transfer Agent Vulnerable to Remote SQL Injection (CVE-2025-26794), PoC Published
A new vulnerability has been discovered in Exim, a widely used mail transfer agent (MTA) for Unix-like systems. The vulnerability, tracked as CVE-2025-26794 and assigned a CVSS score of 7.5, could all ...
-
TheCyberThrone
Google Released PoC for CVE-2025-0110 PAN OS Flaw
Google’s Project Zero and Mandiant cybersecurity teams have jointly released a proof-of-concept (PoC) exploit for a significant security vulnerability identified in Palo Alto Networks’ PAN-OS OpenConf ...
-
Help Net Security
Week in review: PostgreSQL 0-day exploited in US Treasury hack, top OSINT books to learn from
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: A PostgreSQL zero-day was also exploited in US Treasury hack (CVE-2025-1094) The suspected Chinese sta ...
-
TheCyberThrone
TheCyberThrone Security Weekly Review – February 22, 2025
Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the week ending Saturday, February 22, 2025.XCSSET Malware Targeti ...
-
Cybersecurity News
CVE-2024-37361 (CVSS 9.9): Critical Vulnerability in Pentaho Business Analytics Server
Hitachi Vantara has issued a security advisory addressing a vulnerability, designated as CVE-2024-37361, in its Pentaho Business Analytics Server. This vulnerability carries a CVSS score of 9.9, indic ...
-
TheCyberThrone
CVE-2025-24989 added to CISA KEV
CVE-2025-24989 is a high security vulnerability that has been added to the Known Exploited Vulnerabilities (KEV) Catalog by the Cybersecurity and Infrastructure Security Agency (CISA). This inclusion ...
-
InfoSec Write-ups
How I found my first mistake Or why you shouldn’t overlook the obvious.
My story won’t be too long, I am a novice hunter and I want to tell you about how I found my first bug . It’s not a manual on how to find a bug.I chose site and did a quick analysis of it using the to ...
-
Cyber Security News
Salt Typhoon Hackers Exploit Cisco Vulnerability To Gain Access To U.S. Telecom Networks
Cisco Talos has uncovered a sophisticated cyberespionage campaign by the state-aligned “Salt Typhoon” group targeting U.S. telecommunications infrastructure since late 2024. While credential theft rem ...