Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: a year ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...

đź“Ś Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

Read more →
https://www.binance.comJan 25

Quantum Computing's Impact on Cryptocurrency Overstated, Says a16z - Binance

It also notes that in the foreseeable future, traditional security issues such as code defects, side-channel attacks, and fault injections should take...

Read more →
https://www.tradingview.comJan 25

GameStop 'likely to sell' Bitcoin holdings, Ethereum prepares for quantum: Hodler's Digest, Jan. 18

The Ethereum Foundation has made post-quantum security a central focus of the networks long-term roadmap, announcing the formation of a dedicated Post...

Read more →
https://www.theblock.coJan 25

Individual behind $40 million government wallet theft is son of seized-crypto contractor executive

Ethereum Foundation forms post-quantum security team, adds $1 million research prize. Jan 24, 2026, 5:48PM EST • Crypto Ecosystems · Spot bitcoin ...

Read more →
https://www.foxnews.comJan 25

Google Fast Pair flaw lets hackers hijack headphones - Fox News

WhisperPair vulnerability in Google Fast Pair allows attackers to silently hijack Bluetooth headphones from Sony, Jabra, JBL and other brands.

Read more →
https://kroc.comJan 25

The 25 Most Easily Hacked Passwords In Wisconsin For 2026 - 106.9 KROC

Hacked passwords can lead to identity theft, financial loss and more. Avoid using any passwords that are on this list.

Read more →
https://www.yahoo.comJan 26

Hackers Impersonate X Staff Using Compromised Scroll Founder Account - Yahoo

The breach follows established tactics where hackers exploit trusted accounts to distribute malicious links disguised as urgent platform notifications...

Read more →
https://www.securityweek.comJan 22

The Upside Down is Real: What Stranger Things Teaches Us About Modern Cybersecurity

Cybersecurity demands persistence from the dedicated security professionals protecting our digital infrastructure.

Read more →
https://theconversation.comJan 22

Hacking the grid: How digital sabotage turns infrastructure into a weapon

Unlike traditional sabotage, these hackers infiltrated networks to remain dormant and undetected, gaining the ability to disrupt the United States' .....

Read more →

Updated daily

TOP SITES

Cyber_Comply © 2021-25