Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...
Loading...
Zombie hands

CVE = Common Vulnerability and Exposure

CVE OF THE WEEK:

Palo Alto Networks

PAN-OS
Patch deadline: a year ago on 01/20/2025

CVE-2024-3393

Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.

Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability

Learn more about this CVE: paloaltonetworks.com

News Logo

Cyber Security News

You may have missed...


📌 Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

https://www.kennedyslaw.comFeb 11

Crypto asset disputes when prices fall - Kennedys Law

Increased litigation risks · A company or individual may have borrowed money by giving security to the lender in the form of crypto-assets. · A compan...

https://fintechmagazine.comFeb 11

Klarna's Stablecoin Bet: Why the Card Networks Should Worry | FinTech Magazine

... security and scale that mainstream payments demand. Now, he seems to ... Klarna CEO reverses crypto stance as blockchain infrastructure matures.

https://londonlovesbusiness.comFeb 11

More than a private key: Building smarter crypto wallets in 2026 - London Business News

Explore the future of crypto wallet development in 2026. Get expert tips on account abstraction, MPC security, and building user-friendly Web3 ...

https://www.jdsupra.comFeb 11

SEC Staff Issues Statement on Tokenized Securities | Latham & Watkins LLP - JDSupra

Securities Tokenized by the Issuer. A security may be issued at the outset in the form of a tokenized cryptoasset by recording ownership of the ...

https://www.wspynews.comFeb 11

Oswego man pleads guilty in Snapchat hacking scheme | Local News | wspynews.com

An Oswego man has pleaded guilty in a Snapchat hacking scheme in federal court in Boston. Twenty-seven-year-old Kyle Svara pleaded guilty to ...

https://thehackernews.comFeb 11

Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days

... Hacker News via email. "This could occur through a malicious attachment, a remote code execution vulnerability, or lateral movement from another ....

https://www.wect.comFeb 11

Hackers steal nearly $488K from Town of Carolina Beach in dual cyberattacks - WECT

Investigators determined that the cyberattacks are related to an ongoing investigation in another state and are international in scope.

https://decrypt.coFeb 10

Google Warns of AI-Powered North Korean Malware Campaign Targeting Crypto, DeFi - Decrypt

The Mandiant security team says North Korean hackers are upgrading their social engineering tactics to include AI-generated video.


Updated daily