Security news aggregator

Latest coverage for CVE

Stay informed on the latest CVE entries. Explore critical vulnerabilities and exposures to safeguard your systems from cyber threats and attacks.

6 headlines in this view

CVE is a publicly available catalog of common identifiers for publicly known cybersecurity vulnerabilities. Originating from the Common Vulnerabilities and Exposures (CVE) system, it enables security professionals and IT organizations to synchronize their efforts in securing systems against known threats.

In the context of information security, CVE entries provide precise definitions for vulnerabilities and exposures. This allows for better management of security coverage by facilitating clear communication about the presence of threats and the need for patches or remedial action. With a standardized approach to vulnerability management, CVE helps in coordinating across different security tools and databases, ensuring an aligned and coherent response to security incidents.

Showing 6 most recent headlines Filtered view

Cyber Scoop 2 days, 5 hours ago

Attackers are exploiting Palo Alto Networks defect that initially flew under the radar

The escalated threat posed by the defect showcases how quickly a seemingly mild vulnerability can turn into an urgent warning. The post Attackers are exploiting Palo Alto Networks defect that initially flew under the radar appeared first on CyberScoop.

More from Cyber Scoop 2 Jun 2026, 10:29 a.m. Incident · 14 stories CVE Palo Alto Networks Vulnerability Warning

Security Affairs 3 days, 9 hours ago

CVE-2026-0257: Rapid7 Caught Attackers Abusing Forged VPN Cookies Against Multiple Customers

CVE-2026-0257 lets attackers forge Palo Alto GlobalProtect auth cookies and bypass VPN login. Exploitation confirmed since May 17. Palo Alto Networks addressed the vulnerability CVE-2026-0257 on May 13. Two weeks later, cybersecurity firm Rapid7 confirmed active exploitation across multiple customer environments. The flaw impacts the GlobalProtect portal and gateway components of Palo Alto Networks PAN-OS […]

More from Security Affairs 1 Jun 2026, 5:52 a.m. Incident · 14 stories Actively exploited CVE-2026-0257 Bypass CVE Flaw Palo Alto Networks VPN Vulnerability

Bleeping Computer 4 days, 9 hours ago

Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks

Palo Alto Networks is warning that hackers are now exploiting a PAN-OS GlobalProtect authentication bypass flaw, tracked as CVE-2026-0257, in attacks attempting to breach corporate networks. [...]

More from Bleeping Computer 31 May 2026, 6:02 a.m. Incident · 14 stories Actively exploited CVE-2026-0257 Authentication Breach Bypass CVE Flaw Palo Alto Networks VPN Warning

The Hacker News 4 days, 20 hours ago

PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation

Palo Alto Networks has warned that a recently disclosed medium-severity security flaw impacting PAN-OS and Prisma Access has come under active exploitation in the wild

More from The Hacker News 30 May 2026, 6:41 p.m. Incident · 14 stories Actively exploited CVE-2026-0257 Authentication Bypass CVE Disclosure Flaw Palo Alto Networks VPN Vulnerability

The Hacker News 3 weeks, 6 days ago

PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage

Palo Alto Networks has disclosed that threat actors may have attempted to unsuccessfully exploit a recently disclosed critical security flaw as early as April 9, 2026

More from The Hacker News 8 May 2026, 1:34 a.m. Incident · 14 stories Authentication CVE Critical Disclosure Exploit Flaw Palo Alto Networks Remote Code Execution Root Threat Actor Unauthenticated Vulnerability

The Hacker News 4 weeks ago

Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution

Palo Alto Networks has released an advisory warning that a critical buffer overflow vulnerability in its PAN-OS software has been exploited in the wild

More from The Hacker News 6 May 2026, 6:14 p.m. Incident · 14 stories Authentication CVE Critical Flaw Palo Alto Networks Remote Code Execution Unauthenticated Vulnerability Warning

Latest coverage for CVE

Refine the feed

Tag briefing

Volume over time