CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
seclists.org
APPLE-SA-01-27-2025-2 iOS 18.3 and iPadOS 18.3
Full Disclosure mailing list archives From: Apple Product Security via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 27 Jan 2025 14:52:11 -0800 -----BEGIN PGP SIGNED MESSAGE----- Hash: SH ...
-
seclists.org
APPLE-SA-01-27-2025-1 visionOS 2.3
Full Disclosure mailing list archives From: Apple Product Security via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 27 Jan 2025 14:51:36 -0800 -----BEGIN PGP SIGNED MESSAGE----- Hash: SH ...
-
seclists.org
AutoLib Software Systems OPAC Version.20.10 | Exposure of Sensitive Information | CVE-2024-48310
Full Disclosure mailing list archives From: Shaikh Shahnawaz <sshahnawaz99910 () gmail com> Date: Mon, 27 Jan 2025 16:30:18 +0400 [+] Credits: Shahnawaz Shaikh, Security Researcher at Cybergate Defens ...
-
seclists.org
SEC Consult SA-20250127-0 :: Weak Password Hashing Algorithms in Wind River Software VxWorks RTOS
Full Disclosure mailing list archives SEC Consult SA-20250127-0 :: Weak Password Hashing Algorithms in Wind River Software VxWorks RTOS From: SEC Consult Vulnerability Lab via Fulldisclosure <fulldisc ...
-
Dark Reading
Apple Patches Actively Exploited Zero-Day Vulnerability
Source: Shahid Jamil via Alamy Stock PhotoNEWS BRIEFIn its latest security update for users, Apple has released a patch for a zero-day vulnerability tracked as CVE-2025-24085 (no CVSS score assigned y ...
-
BleepingComputer
Apple fixes this year’s first actively exploited zero-day bug
Apple has released security updates to fix this year's first zero-day vulnerability, tagged as actively exploited in attacks targeting iPhone users. The zero-day fixed today is tracked as CVE-2025-24 ...
-
BleepingComputer
Clone2Leak attacks exploit Git flaws to steal credentials
A set of three distinct but related attacks, dubbed 'Clone2Leak,' can leak credentials by exploiting how Git and its credential helpers handle authentication requests. The attack can compromise passwo ...
-
Help Net Security
5,000+ SonicWall firewalls still open to attack (CVE-2024-53704)
5,000+ SonicWall firewalls are still vulnerable to attack via a high-severity vulnerability (CVE-2024-53704) that, according to SonicWall, should be considered “at imminent risk of exploitation”. The ...
-
The Hacker News
GitHub Desktop Vulnerability Risks Credential Leaks via Malicious Remote URLs
Vulnerability / Software Security Multiple security vulnerabilities have been disclosed in GitHub Desktop as well as other Git-related projects that, if successfully exploited, could permit an attacke ...
-
Krypt3ia
Krypt3ia Daily Cyber Threat Intelligence (CTI) Digest
Date: 1.27.25 Top Headlines Industry leaders explain how AI will change cybersecurity Summary: COMMENTARY: Over the past year, the security industry has grappled with the widespread adoption of AI as ...