Security news aggregator

Latest coverage for CVE

Stay informed on the latest CVE entries. Explore critical vulnerabilities and exposures to safeguard your systems from cyber threats and attacks.

2 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

CVE is a publicly available catalog of common identifiers for publicly known cybersecurity vulnerabilities. Originating from the Common Vulnerabilities and Exposures (CVE) system, it enables security professionals and IT organizations to synchronize their efforts in securing systems against known threats.

In the context of information security, CVE entries provide precise definitions for vulnerabilities and exposures. This allows for better management of security coverage by facilitating clear communication about the presence of threats and the need for patches or remedial action. With a standardized approach to vulnerability management, CVE helps in coordinating across different security tools and databases, ensuring an aligned and coherent response to security incidents.

Volume over time

Weekly headline count for the current query.

Showing 2 most recent headlines Filtered view

Attackers began exploiting Drupal SQL injection flaw CVE-2026-9082 within 48 hours of patch release. Drupal issued a highly critical security patch on May 20 for CVE-2026-9082, a SQL injection vulnerability that allows unauthenticated attackers to compromise sites running PostgreSQL databases. The project maintainers warned ahead of the release that exploits could surface within hours or […]

More from Security Affairs 24 May 2026, 4:17 a.m. Incident · 3 stories Actively exploited CVE-2026-9082 CVE Compromise Critical Exploit Flaw Patch PostgreSQL SQL Unauthenticated Vulnerability

Drupal has released security updates for a "highly critical" security vulnerability in Drupal Core that could be exploited by attackers to achieve remote code execution, privilege escalation, or information disclosure

More from The Hacker News 21 May 2026, 3:44 p.m. Incident · 3 stories API CVE Critical Database Disclosure Flaw PostgreSQL Privilege Escalation Remote Code Execution Vulnerability