Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: a year ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...

đź“Ś Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

Read more →
https://www.dlnews.comJan 7

Crypto pig butchering kingpin who lost $15bn in Bitcoin to US gov. arrested in Cambodia

In October, US authorities, including the Department of Justice's National Security Division, filed a civil forfeiture complaint for 127,271 Bitcoin ....

Read more →
https://www.tradingview.comJan 7

Trust Wallet's $7M hack shows where crypto-friendly SMEs may be vulnerable

Key takeawaysThe Trust Wallet hack in December 2025, which resulted in losses of about $7 million, provides security-relevant insights for small ...

Read more →
https://unchainedcrypto.comJan 7

How Maduro's Capture and a 'Pre-War World' Affects Bitcoin: Bits + Bips - Unchained Crypto

... security in a shifting global order. The group also debates whether crypto's 24/7 markets are revealing a structural weakness in traditional ...

Read more →
https://federalnewsnetwork.comJan 6

The veteran advantage: How military service shapes cybersecurity leadership

In an era where cyber threats evolve faster than most organizations can respond, effective cybersecurity leadership demands more than technical ...

Read more →
https://cyberscoop.comJan 7

Why cybersecurity cannot hire its way through the AI era | CyberScoop

AI is changing cybersecurity work as roles shift, AI agents automate operations, and leaders adopt risk operations centers to prove ROI, ...

Read more →
https://www.darkreading.comJan 7

Cyberattacks Likely Part of Military Operation in Venezuela - Dark Reading

Cybersecurity experts at Team Cymru verified an attack, but could not determine if it could have caused an outage. Similarly, whether the US military ...

Read more →
https://www.infosecurity-magazine.comJan 7

Hackers Claim to Disconnect Brightspeed Customers After Breach - Infosecurity Magazine

A US internet service provider (ISP) is scrambling to investigate a recent security breach in which threat actors claim to have obtained ...

Read more →
https://www.securityweek.comJan 7

Hackers Exploit Zero-Day in Discontinued D-Link Devices - SecurityWeek

Hackers Exploit Zero-Day in Discontinued D-Link Devices ... The critical-severity vulnerability allows unauthenticated, remote attackers to execute .....

Read more →

Updated daily

TOP SITES

Cyber_Comply © 2021-25