Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: 9 months ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...


📌 Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

https://www.bbc.comOct 6

The true extent of cyber attacks on UK business - BBC

Are this year's major attacks the "cumulative effect of a kind of inaction on cyber security" from the government and big business?

https://techinformed.comOct 5

Expiration of CISA 2015 Amid Shutdown Raises Cybersecurity Concerns - TechInformed

The expiration of the Cybersecurity Information Sharing Act of 2015 (CISA 2015) has left a major hole in U.S. cyber defense.

https://vocal.mediaOct 5

Best Books to Learn Cybersecurity in 2025 | Art - Vocal Media

Cybersecurity is a vast field blending technical skills, ethical hacking, risk management, and real-world threats. Books remain one of the best ...

https://www.abc.net.auOct 5

Inside the 'Trinity of Chaos' group of young hackers targeting major companies - ABC News

Using poetry and mockery, a hacker conglomerate uniting groups responsible for some of the world's largest, high-profile data breaches penned their .....

https://www.anthropic.comOct 4

Building AI for cyber defenders - Anthropic

AI models are now useful for cybersecurity tasks in practice, not just theory. As research and experience demonstrated the utility of frontier AI ...

https://www.boothbayregister.comOct 4

AARP scam alert: Cybersecurity Awareness Month - Boothbay Register

October is National Cybersecurity Awareness Month – a great time to remind ourselves just how much of our lives take place online and the ...

https://www.cnn.comOct 4

Hackers targeted a global conglomerate. A local community is counting the costs. - CNN

Or at least they were — until Jaguar Land Rover (JLR) was brought to a standstill after a devastating hack late in August. “We are about 30% down,” .....

https://www.insurancebusinessmag.comOct 4

When Hackers Hit the Taps: Could Canada's Beer Run Dry - Insurance Business America

"I think we're going to see more events attacking the manufacturing and the operational piece," said Erin Eisenrich, VP, Technology E&O and Internatio...


Updated daily