CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
5G Core Breach: Critical HPE Aruba Flaw Allows Unauthenticated Admin Takeover
HPE Aruba Networking has issued a critical security alert for its Private 5G Core platform, rushing to patch a cluster of vulnerabilities that could allow attackers to bypass authentication and seize ...
-
CybersecurityNews
Massive Spike in Attacks Exploiting Ivanti EPMM Systems 0-day Vulnerability
Ivanti EPMM 0-day Vulnerability Exploited An unprecedented surge in exploitation attempts targeting CVE-2026-1281, a critical vulnerability in Ivanti Endpoint Manager Mobile (EPMM). On February 9, 202 ...
-
CybersecurityNews
Critical SandboxJS Vulnerability Allows Remote Host Takeover – PoC Released
SandboxJS Vulnerability PoC Released A severe sandbox escape vulnerability has been discovered in the JavaScript library, enabling attackers to execute arbitrary code on host systems. The flaw, tracke ...
-
CybersecurityNews
Critical UUID Flaw in Fiber v2 on Go 1.24+ Enables Session Hijacking, CSRF Bypass, and Zero-ID DoS Risk
UUID Flaw in Fiber v2 on Go A severe vulnerability has been discovered in Fiber v2, a popular Go web framework, that could allow attackers to hijack user sessions, bypass security protections, and cau ...
-
The Register
Were telcos tipped off to *that* ancient Telnet bug? Cyber pros say the signs stack up
Telcos likely received advance warning about January's critical Telnet vulnerability before its public disclosure, according to threat intelligence biz GreyNoise. Global Telnet traffic "fell off a cli ...
-
0patch.com
Micropatches released for Windows Telephony Service Elevation of Privilege Vulnerability (CVE-2024-43626)
Our new CVE tracking app has been working hard these days, finding things our poor human eyes were unable or too tired to see. In this case, it alerted us about a vulnerability that was described in a ...
-
Help Net Security
Ivanti EPMM exploitation: Researchers warn of “sleeper” webshells
A massive wave of exploitation attempts has followed the disclosure of CVE-2026-1281, a critical pre-authentication Ivanti EPMM vulnerability, the Shadowserver Foundation has warned. Some of it is aut ...
-
CybersecurityNews
MSHTML Framework 0-Day Vulnerability Let Attackers Security Feature over Network
MSHTML Framework 0-Day Vulnerability Microsoft has released an urgent security patch for a critical zero-day vulnerability (CVE-2026-21513) affecting the MSHTML Framework, which was actively exploited ...
-
The Hacker News
Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms
It's Patch Tuesday, which means a number of software vendors have released patches for various security vulnerabilities impacting their products and services. Microsoft issued fixes for 59 flaws, incl ...
-
CybersecurityNews
Microsoft Office Word 0-day Vulnerability Actively Exploited in the Wild
Microsoft Office Word 0-day Vulnerability A critical zero-day vulnerability in Microsoft Word, tracked as CVE-2026-21514, was disclosed on February 10, 2026, allowing attackers to bypass essential sec ...