CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CISA KEV Catalog Update September 2024 -Part VI
The US CISA adds nine vulnerabilities to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitationCVE-2024-27348 Apache HugeGraph-Server contains an improper access con ... Read more
-
security.nl
VMware vCenter-servers via kritiek beveiligingslek op afstand over te nemen
Een kritieke kwetsbaarheid maakt het mogelijk om VMware vCenter-servers op afstand over te nemen. Broadcom heeft beveiligingsupdates uitgebracht om het probleem te verhelpen. VCenter is een oplossing ... Read more
-
Help Net Security
Critical VMware vCenter Server bugs fixed (CVE-2024-38812)
Broadcom has released fixes for two vulnerabilities affecting VMware vCenter Server that can be triggered by sending a specially crafted network packet, and could lead to remote code execution (CVE-20 ... Read more
-
The Hacker News
Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution
Virtualization / Network Security Broadcom on Tuesday released updates to address a critical security flaw impacting VMware vCenter Server that could pave the way for remote code execution. The vulner ... Read more
-
TheCyberThrone
VMware fixes flaws identified in Chinese Matrix Cup
VMware released patches for two critical vulnerabilities in its vCenter Server platform and warned that there’s a major risk of remote code execution attacks.The first vulnerability tracked as CVE-202 ... Read more
-
Trend Micro
Vulnerabilities in Cellular Packet Cores Part IV: Authentication
Exploits & Vulnerabilities Our research reveals two significant vulnerabilities in Microsoft Azure Private 5G Core (AP5GC). The first vulnerability (CVE-2024-20685) allows a crafted signaling message ... Read more
-
Dark Reading
Zero-Click RCE Bug in macOS Calendar Exposes iCloud Data
Source: Bjanka Kadic via Alamy Stock PhotoA zero-click chain of critical-, medium-, and low-severity vulnerabilities in macOS could have allowed attackers to undermine macOS's brand name security prot ... Read more
-
The Register
VMware patches remote make-me-root holes in vCenter Server, Cloud Foundation
Broadcom has emitted a pair of patches for vulnerabilities in VMware vCenter Server that a miscreant with network access to the software could exploit to completely commandeer a system. This also affe ... Read more
-
BleepingComputer
Broadcom fixes critical RCE bug in VMware vCenter Server
Broadcom has fixed a critical VMware vCenter Server vulnerability that attackers can exploit to gain remote code execution on unpatched servers via a network packet. vCenter Server is the central mana ... Read more
-
BleepingComputer
PKfail Secure Boot bypass remains a significant risk two months later
Roughly nine percent of tested firmware images use non-production cryptographic keys that are publicly known or leaked in data breaches, leaving many Secure Boot devices vulnerable to UEFI bootkit mal ... Read more