Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: a year ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...

đź“Ś Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

Read more →
https://www.engadget.comJan 11

Instagram says accounts 'are secure' after wave of suspicious password reset requests

Cybersecurity. Instagram says accounts 'are secure' after wave of suspicious password reset requests. On the other hand, Malwarebytes said this ...

Read more →
https://www.wcbi.comJan 10

Hackers accessed University of Hawaii Cancer Center patient data; they weren't immediately notified

The report indicates that the hackers broke into Cancer Center servers, encrypted files related to a cancer study, and demanded payment for a program ...

Read more →
https://thehill.comJan 10

Grenell says X account hacked after sharing Washington Opera exit from Kennedy Center

Kennedy Center President Richard Grenell claimed his X account was hacked, leading to the removal of posts about the Washington National Opera's ...

Read more →
https://heavy.comJan 10

Indiana Football Accused of Cheating as Wild Social Media Rumor Spreads - Heavy Sports

“Not only has Indiana been hacking into the VEO/Pixellot software to watch practice film of other teams, but they have infiltrated most cloud ...

Read more →
https://cryptobriefing.comJan 11

Truebit hacker launders $26 million in ETH via Tornado Cash - Crypto Briefing

The Truebit attacker laundered $26M in Ethereum via Tornado Cash after exploiting the protocol in the year's first DeFi hack.

Read more →
https://coinpaper.comJan 11

Shiba Inu Reveals Secret Two-Layer Plan to Pay Back Hack Victims - Coinpaper

Shiba Inu introduces the SOU recovery system for Shibarium hack victims, combining Ethereum NFT claims with BSC community fundraising.

Read more →
https://www.binance.comJan 8

Security Vulnerability Discovered in Anthropic's Claude Code - Binance

23pds noted that phishing hackers have already exploited this vulnerability to target cryptocurrency users. Disclaimer: Includes third-party opinions.

Read more →
https://www.nytimes.comJan 8

Why Cambodia Handed Over a Man Accused of Stealing Billions in Crypto Scam

In a statement, China's Ministry of Public Security called the arrest “another great achievement under China-Cambodia law enforcement cooperation.”.

Read more →

Updated daily

TOP SITES

Cyber_Comply © 2021-25