Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: a year ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...

đź“Ś Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

Read more →
https://therecord.mediaDec 18

Over $3.4 billion in crypto stolen throughout 2025, with North Korea again the top culprit

Blockchain security company Chainalysis published its annual report covering the year's crypto theft, finding a general shift toward larger ...

Read more →
https://www.bankinfosecurity.comDec 18

Crypto Theft in 2025 Concentrated in Fewer, Larger Breaches - BankInfoSecurity

Andrew Fierman, head of national security intelligence at Chainalysis, said the number of major breaches represents a behavioral shift. "We are often ...

Read more →
https://cryptopotato.comDec 18

Crypto Whale Loses $38M in Multisig Exploit - CryptoPotato

Multisig Drained After Private Key Compromise. Blockchain security firm PeckShield reported on X on December 18 that a whale's wallet was emptied ...

Read more →
https://www.qsrmagazine.comDec 18

Buying a Franchise? Don't Ignore the Cybersecurity Risks - QSR Magazine

How do you evaluate cybersecurity in a franchise M&A deal, and how can a trusted lender help with the process? Tech in franchise restaurants. A modern...

Read more →
https://www.theregister.comDec 18

React2Shell exploitation spreads as Microsoft counts hundreds of hacked machines

Microsoft says attackers have already compromised "several hundred machines across a diverse set of organizations" via the React2Shell flaw, ...

Read more →
https://www.coindesk.comDec 18

North Korea stole $2 billion in crypto in 2025, Chainalysis says - CoinDesk

The hackers were behind 76% of service-level hacks, reflecting a ... As the year winds to a close, North Korea's crypto hacking efforts show ...

Read more →
https://therecord.mediaDec 18

France arrests 22-year-old over Interior Ministry hack - Recorded Future News

French authorities arrested a 22-year-old on Wednesday as part of an investigation into a hack of the country's Interior Ministry that saw the ...

Read more →
https://thehill.comDec 18

China's AI has hacked the West — we gave them the keys - The Hill

China has proven it can use artificial intelligence to hack into American companies and government agencies with the machine almost entirely in charge...

Read more →

Updated daily

TOP SITES

Cyber_Comply © 2021-25