Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: a year ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...

đź“Ś Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

Read more →
https://cryptoslate.comDec 17

Michael Saylor says quantum will "harden" Bitcoin, but he's ignoring the 1.7 million coins ...

Security goes up. Supply comes down. Bitcoin grows stronger.” The statement captures the optimistic case for Bitcoin's post-quantum future. Still, the...

Read more →
https://www.tradingview.comDec 17

Tether's New Move Could Make Cloud Passwords Obsolete | US Crypto News

PearPass combines ease of use with advanced security features. It includes a built-in password generator, end-to-end encryption powered by open-source...

Read more →
https://www.darkreading.comDec 17

Attackers Use Stolen AWS Credentials in Cryptomining Campaign - Dark Reading

To help security teams monitor for malicious cryptomining activity that's affecting their cloud infrastructure, AWS included a number of indicators of...

Read more →
https://www.tradingview.comDec 17

'Nonsense': Satoshi Associate Shuts Down Quantum Threat Claims Around Bitcoin

NIST wrapped up SLH-DSA in 2024, and Bitcoin can switch to quantum-secure signatures without locking funds or rebuilding the whole protocol. Adam Back...

Read more →
https://betanews.comDec 17

Most schools underprepared for cybersecurity threats - BetaNews

... ransomware. Two thirds of school IT leaders now rate their cybersecurity maturity as only moderate, while high confidence dropped from 30 percent ...

Read more →
https://www.fiercehealthcare.comDec 17

New York doles out $300M to fund health IT, hospital cybersecurity projects

New York state plans to invest $300 million in efforts to modernize hospital IT infrastructure, bolster cybersecurity and expand telehealth ...

Read more →
https://www.theguardian.comDec 17

From street stalls to startups – why cybersecurity isn't just for big business - The Guardian

In the Mastercard survey, 73% of business owners said that getting employees to take cybersecurity seriously was a challenge. Kyriakos Baxevanis, an ....

Read more →
https://www.10news.comDec 17

Cybersecurity experts warn against internet-connected toys this holiday season

As families prepare for Christmas shopping, cyber security experts are raising concerns about internet-connected toys that could expose children ...

Read more →

Updated daily

TOP SITES

Cyber_Comply © 2021-25