Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: a year ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...

đź“Ś Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

Read more →
https://www.theregister.comJan 21

72.7M Under Armour accounts hit in alleged ransomware leak - The Register

The data breach platform ingested the files that were leaked by a member of the Everest ransomware group on January 18 via a cybercrime forum.

Read more →
https://cyberscoop.comJan 21

Black Basta's alleged ringleader identified as authorities raid homes of other members

Oleg Evgenievich Nefedov, a 35-year-old Russian national, is accused of forming and running the ransomware outfit since 2022.

Read more →
https://cybersecurityventures.comJan 21

Best Cybersecurity Newsletters Shortlist For 2026 - Cybercrime Magazine

This week in cybersecurity from the editors at Cybercrime Magazine ... With new cyber vulnerabilities emerging daily, it's not enough to rely solely o...

Read more →
https://darknetdiaries.comJan 21

EP 169: MoD - Darknet Diaries

Legion of Doom, step aside. There's a new elite hacker group in town, and they're calling themselves Masters of Deception (MoD).

Read more →
https://www.nbcnewyork.comJan 21

Prince Harry takes the stand in his phone hacking lawsuit against Daily Mail

Prince Harry takes the stand in his phone hacking lawsuit against Daily Mail. It's the final round in Harry' battle with the British tabloids with ...

Read more →
https://www.helpnetsecurity.comJan 20

Confusion and fear send people to Reddit for cybersecurity advice - Help Net Security

When cybersecurity problems hit, many people look for help on Reddit, turning to the platform for advice and reassurance.

Read more →
https://securityaffairs.comJan 20

Critical TP-Link VIGI camera flaw allowed remote takeover of surveillance systems

TP-Link fixed a critical flaw that exposed over 32 VIGI C and VIGI InSight camera models to remote hacking.

Read more →
https://www.pcgamer.comJan 20

As if LinkedIn messages couldn't get any worse, hackers are using them to install malware ...

It argues that files with open-source tools both signal trust and are highly accessible—both of which can be exploited. Fallout hacking minigame. An ....

Read more →

Updated daily

TOP SITES

Cyber_Comply © 2021-25