Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: 10 months ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...

đź“Ś Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

Read more →
https://cryptorank.ioNov 18

How Bitcoin and Ethereum Forge Different Security Paths Against Looming Threats - CryptoRank

BitcoinWorld Quantum Resistance: How Bitcoin and Ethereum Forge Different Security Paths Against Looming Threats Imagine waking up to news that ...

Read more →
https://thehackernews.comNov 18

Seven npm Packages Use Adspect Cloaking to Trick Victims Into Crypto Scam Pages

"Upon visiting a fake website constructed by one of the packages, the threat actor determines if the visitor is a victim or a security researcher," .....

Read more →
https://www.theblock.coNov 17

Vitalik Buterin unveils Kohaku, a privacy-focused framework for Ethereum | The Block

Kohaku is a suite of privacy-preserving crypto tools to enhance privacy and security in the Ethereum ecosystem.

Read more →
https://www.telecomramblings.comNov 17

Industry Spotlight: QuSecure's Dave Krauthamer on Post-Quantum Security

This is a network issue, and if we can orchestrate this cryptography throughout the network, like SD-WAN for crypto, then it's an easy way to ...

Read more →
https://www.jdsupra.comNov 17

SEC chair outlines 'Project Crypto' vision and approach for digital asset regulation

He contended that “economic reality,” not labels, should determine whether a cryptoasset is a security. Atkins also stated that investment contracts ....

Read more →
https://www.helpnetsecurity.comNov 17

The year ahead in cyber: What's next for cybersecurity in 2026 - Help Net Security

He explains that attackers are often breaching networks by targeting people instead of exploiting software flaws. The Shiny Hunters' 2025 attack on .....

Read more →
https://www.hstoday.usNov 17

AI-Driven Espionage Campaign Marks New Phase in Cybersecurity, Researchers Say

Anthropic warns this marks a turning point for cybersecurity, lowering the barrier for sophisticated attacks. The company has expanded detection ...

Read more →
https://www.aei.orgNov 17

Restoring America's Cyber Shield: Why CISA 2015 Must Be Reenacted Now

The United States faces a cybersecurity crisis: not from foreign actors, but from internal political deadlock that has dismantled one of its most ...

Read more →

Updated daily

TOP SITES

Cyber_Comply © 2021-25