Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: 9 months ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...


📌 Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

https://fox17.comOct 19

La Vergne cybersecurity incident under investigation - FOX 17 News

The City of La Vergne is investigating a network issue that affected some of its computer systems.Officials are working with cybersecurity experts ...

https://aviationa2z.comOct 19

American Airlines' Largest Regional Subsidiary Suffers Data Breach - Aviation A2Z

CrowdStrike and Mandiant cybersecurity researchers reported that Clop exploited these vulnerabilities in early August 2025 to deploy malware and steal...

https://www.mitrade.comOct 18

North Korean Hackers Weaponize Blockchain in New 'EtherHiding' Campaign - Mitrade

A new cyber threat is emerging from North Korea as its state-backed hackers experiment with embedding malicious code directly into blockchain ...

https://www.foxnews.comOct 19

Discord confirms vendor breach exposed user IDs in ransom plot - Fox News

Hackers accessed Discord user data via customer support provider breach, compromising personal information and prompting cybersecurity protection ...

https://www.fox17online.comOct 16

Defend your data: Four tips to not get hacked this Cybersecurity Awareness Month - FOX 17

The Better Business Bureau has released tips to make sure you are protecting your digital life during Cyber Security Awareness Month.

https://blogs.cisco.comOct 16

Find Yourself in the Future: How Generative AI is Reshaping Entry-Level Cybersecurity Job Roles

Cisco Networking Academy examines the transformative power of artificial intelligence (AI) and its impact on cybersecurity careers.

https://www.theregister.comOct 15

'Highly sophisticated' government goons hacked F5 - The Register

Security shop F5 today said "highly sophisticated nation-state" hackers broke into its network and stole BIG-IP source code, ...

https://www.foxnews.comOct 16

Hacker hijacks airport speakers, blasts anti-Trump and other political messages - Fox News

A hacker identifying as "Turkish Cyber Islam" breached Harrisburg International Airport's public address system, broadcasting a political message ...


Updated daily