Known Exploited Vulnerabilities and counting....
A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.
Common Vulnerability and Exposure
CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.
Search Known Exploits
Search for CVEs by vendor to identify known exploited vulnerabilities in your environment
CVE = Common Vulnerability and Exposure
CVE OF THE WEEK:
Palo Alto Networks
PAN-OS
Patch deadline: 8 months ago on 01/20/2025
CVE-2024-3393
Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.
Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability
Learn more about this CVE: paloaltonetworks.com
Cyber Security News
You may have missed...
*
Inside a cyberattack: How hackers steal data
The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...
Critical CVE-2025-5086 in DELMIA Apriso Actively Exploited, CISA Issues Warning
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting Dassault Systèmes DELMIA ...
Why neglected assets are the hidden threat attackers love to find - Help Net Security
Neglected assets cybersecurity risk grows as forgotten cloud resources and outdated OT systems leave gaps attackers exploit.
Town of Waxhaw impacted by cybersecurity attack - WSOC TV
The North Carolina Joint Cybersecurity Task Force, which includes experts from the NC National Guard and other state agencies, has been brought in ...
Why hackers are targeting the world's shipping - BBC
Why hackers are targeting the world's shipping ... Lawyer Henry Clack sadly knows a lot about Nigerian criminal gangs. Mr Clack, a solicitor at London...
15 ransomware gangs 'go dark' to enjoy 'golden parachutes' - The Register
PLUS: China's Great Firewall springs a leak; FBI issues rare 'Flash Alert' of Salesforce attacks; $10m bounty for alleged Russian hacker; and more.
600 GB of Alleged Great Firewall of China Data Published in Largest Leak Yet - Hackread
Hackers leaked 600 GB of data linked to the Great Firewall of China, exposing docs, code, and operations. Full details available on the GFWÂ ...
John Bolton's personal email account was hacked by foreign entity, FBI docs reveal
Former National Security Adviser John Bolton allegedly used a private email account that was at one point hacked by a "foreign entity," an FBIÂ ...
Hacker exploits AI chatbot in cybercrime spree - Fox News
A hacker used Anthropic's Claude AI chatbot to automate cyberattacks against 17 organizations, marking the first documented case of AI-powered ...
Updated daily