Known Exploited Vulnerabilities and counting....

A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.

Woman Looking at Computer Screen

CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.

Search Known Exploits

Search for CVEs by vendor to identify known exploited vulnerabilities in your environment

Loading vendors...

Upcoming Patch Due Dates

via Binding Operational Directive 22-01

(BOD) 22-01 is a directive issued by the Cybersecurity and Infrastructure Security Agency (CISA) in the United States to federal agencies and federal contractors in order to improve their cybersecurity practices. It provides a set of guidelines and requirements that these agencies and contractors must follow to increase their defenses against cyber threats.

Loading...

News Logo

Cyber Security News

You may have missed...

đź“Ś Pinned

*

https:betanews.comMar 5

Inside a cyberattack: How hackers steal data

The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...

Read more →
https://www.securityweek.comMar 26

Chinese Hackers Caught Deep Within Telecom Backbone Infrastructure - SecurityWeek

Chinese state-sponsored <b>hackers</b> deployed the BPFdoor passive backdoor deep within telecom backbone infrastructure worldwide.

Read more →
https://techcrunch.comMar 26

A major hacking tool has leaked online, putting millions of iPhones at risk. Here's what you ...

Here's what we know, and what you need to know, about Coruna and DarkSword, two advanced iPhone <b>hacking</b> tools discovered by security researcher...

Read more →
https://mashable.comMar 25

iPhone exploit DarkSword has been released in the wild | Mashable

DarkSword, the web-based <b>hacker</b> tool that can be used to steal data from millions of iPhones, has just been published on GitHub for public use.

Read more →
https://www.haaretz.comMar 25

Iran, Hezbollah Try Hacking Israel&#39;s Cameras in Bid to Assassinate Israeli Officials - Haaretz

According to Karadi, these are real and serious cyberattacks, some led by official Iranian state <b>hackers</b> against a range of Israeli companies. ...

Read more →
https://www.scworld.comMar 25

Widespread cloud environment compromise facilitated by Trivy supply chain hack | brief

... of the Trivy supply chain <b>hack</b> launched by the TeamPCP <b>hacking</b> operation last week, according to The Register.

Read more →
https://www.theregister.comMar 25

1K+ cloud environments infected via Trivy attack

Over 1,000 cloud environments have been infected with secret-stealing malware following the Trivy supply-chain attack, with attackers now collaboratin...

Read more →
https://www.foxbusiness.comMar 25

US bans new foreign-made consumer internet routers over security concerns - Fox Business

The FCC announced that it is banning the import of all new foreign-made consumer routers due to <b>cybersecurity</b> concerns over vulnerabilities tha...

Read more →
https://www.nbcnews.comMar 25

Iran appears to have conducted a significant cyberattack against a U.S. company, a first since the war started

Iran-linked hacker group Handala Team claimed responsibility for a cyberattack on Stryker, a U.S. medical device company, that disrupted its Microsoft...

Read more →

Updated daily

TOP SITES

Cyber_Comply © 2021-25