CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Critical Apache Commons Text Vulnerability Enables Remote Code Execution Attacks
A newly disclosed security flaw in Apache Commons Text, tracked as CVE-2025-46295, has been identified as a remote code execution (RCE) vulnerability. That could allow attackers to compromise systems ...
-
security.nl
SonicWall dicht actief aangevallen kwetsbaarheid in SMA1000-gateways
SonicWall heeft updates uitgebracht voor een kwetsbaarheid in de SMA1000-gateways die actief bij aanvallen is misbruikt voordat een patch beschikbaar was. Het beveiligingslek (CVE-2025-40602) is gecom ...
-
CybersecurityNews
Critical Vulnerability in Popular Node.js Library Exposes Windows Systems to RCE Attacks
A serious security flaw has been discovered in systeminformation, a popular Node.js library used by thousands of developers. The vulnerability, labelled CVE-2025-68154, allows attackers to run malicio ...
-
The Cyber Express
Cisco Warns of Active Cyberattack Exploiting Critical AsyncOS Vulnerability
Cisco has identified an ongoing cyberattack campaign exploiting vulnerabilities in a subset of its appliances running Cisco AsyncOS Software. The attack specifically affects Cisco Secure Email Gateway ...
-
security.nl
Supplychain-aanval via Asus Live Update voorzien van CVE-nummer
De supplychain-aanval via Asus Live Update die in 2019 plaatsvond is voorzien van een CVE-nummer. Aanvallers wisten de updatesoftware van Asus te compromitteren en konden zo een backdoor onder gebruik ...
-
CybersecurityNews
Hackers Exploiting SonicWall SMA1000 0-day Vulnerability to Escalate Privileges
Security researchers have discovered a critical privilege escalation vulnerability in SonicWall’s SMA1000 appliance that attackers are actively exploiting to gain unauthorized administrative access. T ...
-
seclists.org
CyberDanube Security Research 20251215-0 | Multiple Vulnerabilities in Phoenix Contact FL Switch Series
Full Disclosure mailing list archives CyberDanube Security Research 20251215-0 | Multiple Vulnerabilities in Phoenix Contact FL Switch Series From: Thomas Weber | CyberDanube via Fulldisclosure <fulld ...
-
seclists.org
[KIS-2025-09] Control Web Panel <= 0.9.8.1208 (admin/index.php) OS Command Injection Vulnerability
Full Disclosure mailing list archives From: Egidio Romano <n0b0d13s () gmail com> Date: Tue, 16 Dec 2025 11:36:47 +0100 -------------------------------------------------------------------------------- ...
-
The Hacker News
CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation
Dec 18, 2025Ravie LakshmananVulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical flaw impacting ASUS Live Update to its Kn ...
-
The Hacker News
Cisco Warns of Active Attacks Exploiting Unpatched 0-Day in AsyncOS Email Security Appliances
Dec 18, 2025Ravie LakshmananVulnerability / Network Security Cisco has alerted users of a maximum-severity zero-day flaw in Cisco AsyncOS software that has been actively exploited by a China-nexus a ...