Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: a year ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...


📌 Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

https://www.coinbase.comJan 28

How Coinbase Is Helping the Financial World Stop Cybercriminals in Their Tracks

... crypto security is always a top priority. Coinbase maintains a robust compliance program, which includes Know Your Customer (KYC) checks ...

https://techcrunch.comJan 28

Trump's acting cybersecurity chief uploaded sensitive government docs to ChatGPT

Madhu Gottumukkala, acting director of the Cybersecurity and Infrastructure Security Agency, testifies during the Image Credits:Heather Diehl ...

https://mynorthwest.comJan 28

Tren de Aragua members included in 87 criminals charged for multi-million dollar ATM ...

The scheme involved deploying a variant of malware known as Ploutus, which the defendants used to hack into ATMs, forcing them to produce cash.

https://www.binance.comJan 28

Data Breach Exposes Millions of User Records from Dating Apps - Binance

A hacking group known as ShinyHunters has allegedly leaked over 10 million user records from Match Group's dating platforms, including Hinge, ...

https://www.theregister.comJan 28

China-linked group accused of spying on phones of UK prime ministers' aides – for years

Chinese state-linked hackers ... The breaches were reportedly discovered only in 2024, after the US disclosed that Chinese-linked hacking groups had ....

https://www.tradingview.comJan 27

Ethereum already '20%' of the way toward quantum resilience: Interview - TradingView

Antonio Sanso, cryptography researcher at the Ethereum Foundation, is confident the blockchain will be quantum secure long before a quantum attack ...

https://www.chiefhealthcareexecutive.comJan 27

How a rural health system built a sustainable cybersecurity program | Viewpoint

Shifting from reactive fixes to a risk-driven strategy allows healthcare organizations to align cybersecurity with their broader mission of ...

https://www.theguardian.comJan 27

ABC says 'compromised staff account' led to photos of porn actors being posted on Facebook page

Hacker published images of Bonnie Blue, Lily Phillips and unflattering photo of Anthony Albanese on national broadcaster's Facebook page.


Updated daily