Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: a year ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...

📌 Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

Read more →
https://www.cybersecurity-insiders.comJan 16

Data Poisoning: When AI Learns the Wrong Truth - Cybersecurity Insiders

Data Poisoning: When AI Learns the Wrong Truth. By Maruf Ahmed, CEO, Dexian [ Join Cybersecurity Insiders ] January 16, 2026.

Read more →
https://news.crunchbase.comJan 16

It Was A Big Year For Cybersecurity - Crunchbase News

Cybersecurity startup investment for 2025 hit the highest level in three years, bolstered by big rounds for AI-focused companies in the space.

Read more →
https://hitconsultant.netJan 16

The Quiet Cybersecurity Crisis in Outpatient and Post-Acute Care - HIT Consultant

However, the cybersecurity incident at the 30-bed skilled nursing facility or the ransomware attack at the 15-provider urology practice down the ...

Read more →
https://www.paloaltonetworks.comJan 15

The 3CX Supply Chain Attack: When Trusted Software Turns Malicious - Palo Alto Networks

Cortex XDR's AI stopped the 3CX supply chain attack days before the security industry knew it existed. See how behavioral detection caught what ...

Read more →
https://www.wnyc.orgJan 15

Eric Adams: Crypto Entrepreneur? | The Brian Lehrer Show - WNYC

Then-New York City Mayor Eric Adams speaks at the Security Token Summit in Manhattan on Monday, May 16, 2022.

Read more →
https://coinspot.ioJan 15

Trezor Safe 5 Hardware Wallet Review: Features, Security & Price - Coinspot.io

... crypto asset value. Across personal custody choices, cold-storage devices, desktop programs, and mobile apps can all reduce risk; dedicated ...

Read more →
https://thehill.comJan 15

Senators scramble as crypto fissures threaten key bill - The Hill

... security concerns. “We're still in the zone, but we'll take breath,” he added. “Tomorrow's another day.” Add as preferred source on Google. Tags ....

Read more →
https://bravenewcoin.comJan 16

Best Crypto Presale: Eric Adams' NYC Token Crash as DeepSnitch AI 100X Launch Nears

The digital asset landscape just witnessed another high-profile collapse that proves why automated security is the only way to survive the 2026 cycle.

Read more →

Updated daily

TOP SITES

Cyber_Comply © 2021-25