CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CL-UNK-0979 Exploit Zero-Day Flaw in Ivanti Connect Secure to Gain Access to Networks
Palo Alto Networks has issued a detailed threat briefing on two critical vulnerabilities in Ivanti products—CVE-2025-0282 and CVE-2025-0283. The vulnerabilities affect Ivanti’s Connect Secure, Policy ...
-
TheCyberThrone
CVE-2024-7344 impacts UEFI based systems
CVE-2024-7344 is a critical vulnerability affecting UEFI-based systems. It was discovered by researchers at ESET and involves a bypass of the UEFI Secure Boot mechanism, allowing untrusted code to run ...
-
InfoSec Write-ups
Silver Platter Tryhackme Walkthrough
Can you breach the server?room link : https://tryhackme.com/r/room/silverplatterAfter spending considerable time attempting to gain an initial foothold, I realized that the solution was in plain sight ...
-
Whiterose TryHackMe Motion Graphics Writeup | Easy Room | Detailed THM Walkthrough
Full writeup for the TryHackMe room : Whiterose ( Easy Room )Kudos to the Creator(s) of this room →ROOM DIFFICULTYEasy → Difficulty [ Name : Whiterose , Room loosely Based on the TV Show → Mr. Robot ] ...
-
CVE-2024-50379: Apache Tomcat Race Condition Vulnerability Leads to Remote Code Execution
CVE-2024-50379: Apache Tomcat Race Condition Vulnerability Leads to Remote Code Execution[Write-up] CVE-2024-50379: Apache Tomcat Race Condition POC - RCE Tested on Local Lab.IntroductionApache Tomcat ...
-
The Hacker News
U.S. Sanctions Chinese Cybersecurity Firm Over Treasury Hack Tied to Silk Typhoon
The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) has imposed sanctions against a Chinese cybersecurity company and a Shanghai-based cyber actor for their alleged links to the Sal ...
-
Cybersecurity News
CVE-2025-0107: PoC Exploit Code Released for Palo Alto Expedition RCE Flaw
Security researchers published the technical details and a proof-of-concept (PoC) exploit code for CVE-2025-0107, a vulnerability in Palo Alto Networks’ Expedition migration tool that could allow rem ...
-
Dark Reading
15K Fortinet Device Configs Leaked to the Dark Web
Source: JHVEPhoto via Alamy Stock PhotoDated configuration data and virtual private network (VPN) credentials for 15,474 Fortinet devices have been posted for free to the Dark Web.On Jan. 14, Fortinet ...
-
The Register
Fortinet: FortiGate config leaks are genuine but misleading
Fortinet has confirmed that previous analyses of records leaked by the Belsen Group are indeed genuine FortiGate configs stolen during a zero-day raid in 2022. The leaked data includes IP addresses, c ...
-
The Hacker News
Critical Flaws in WGS-804HPT Switches Enable RCE and Network Exploitation
Firmware Security / Vulnerability Cybersecurity researchers have disclosed three security flaws in Planet Technology's WGS-804HPT industrial switches that could be chained to achieve pre-authenticatio ...