Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: a year ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...

đź“Ś Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

Read more →
https://securityaffairs.comDec 28

Stolen LastPass backups enable crypto theft through 2025 - Security Affairs

Stolen vault backups from the 2022 LastPass breach are still being cracked, allowing attackers to steal crypto as late as 2025.

Read more →
https://www.bitget.comDec 28

Crypto 2025 Recap: The Events That Defined the Year | Bitget News

2025 was not just another bull or bear year — it was a stress test for crypto as a financial system. The market saw extreme highs, major security ...

Read more →
https://www.theregister.comDec 28

Death, torture, and amputation: How cybercrime shook the world in 2025 - The Register

Jameson Lopp, co-founder of crypto security biz Casa, publicly tracks violent crypto thefts, recording 67 for 2025 in total. A warning to readers ...

Read more →
https://uk.finance.yahoo.comDec 28

If You've Made Money on Bitcoin, This Should Be Your Next Move - Yahoo Finance UK

With bitcoin's volatility and the uncertainty of emerging digital assets, the way you manage your profits now can shape your financial security for .....

Read more →
https://cybersecuritynews.comDec 28

87000+ MongoDB Instances Vulnerable to MongoBleed Flaw Exposed Online - Cyber Security News

A high-severity vulnerability in MongoDB Server that allows unauthenticated remote attackers to siphon sensitive data from database memory.

Read more →
https://hackread.comDec 28

When Risk Is Fragmented, Strategy Suffers - Hackread

Legal, finance, cybersecurity, compliance, and enterprise risk teams all generate valuable insights. While their reports may not conflict, they ...

Read more →
https://hackread.comDec 28

Hacker Leaks 2.3M Wired.com Records, Claims 40M-User Condé Nast Breach - Hackread

The leak was posted on December 20, 2025, on a newly launched hacking forum called Breach Stars. Along with a download link and file hash, the hacker ...

Read more →
https://www.foxnews.comDec 27

Most shocking examples of Chinese espionage uncovered by the US this year - Fox News

... Hacker-for-Hire" ecosystem, and more. "President Trump is not ... A major Chinese-linked hacking threat referred to as "Salt Typhoon" was ...

Read more →

Updated daily

TOP SITES

Cyber_Comply © 2021-25