CIBERPLANETA_
// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

  • 🟢 BAJA — 0 CVEs nuevos en el feed reciente
  • 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
  • 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
  • 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

15
CVEs añadidos este mes
1622
Total KEV catalogados
10
Vendors afectados

// cves_añadidos_este_mes

CVE Producto Criticidad Añadido
CVE-2026-48907 Widget Factory Joomla Content Editor 2026-06-16
CVE-2026-54420 LiteSpeed cPanel Plugin ALTA 2026-06-15
CVE-2026-20262 Cisco Catalyst SD-WAN Manager MEDIA 2026-06-15
CVE-2026-35273 Oracle PeopleSoft Enterprise PeopleTools CRÍTICA 2026-06-12
CVE-2026-10520 Ivanti Sentry CRÍTICA 2026-06-11
CVE-2026-11645 Google Chromium V8 ALTA 2026-06-09
CVE-2026-7473 Arista Extensible Operating System MEDIA 2026-06-09
CVE-2026-20245 Cisco Catalyst SD-WAN Manager ALTA 2026-06-09
CVE-2026-42271 BerriAI LiteLLM ALTA 2026-06-08
CVE-2026-50751 Check Point Security Gateway CRÍTICA 2026-06-08

// top_vendors_afectados

Microsoft
16
Cisco
9
Apple
6
Ivanti
4
Google
4
Adobe
3
LiteSpeed
2
Oracle
2
BerriAI
2
SolarWinds
2

// catalogo_kev_completo

CVE ID Producto Descripción CVSS Añadido
CVE-2024-53704 SonicWall SonicOS SonicWall SonicOS contains an improper authentication vulnerability in the SSLVPN authentication mechanism that allows … CRÍTICA 2025-02-18
CVE-2024-57727 SimpleHelp SimpleHelp SimpleHelp remote support software contains multiple path traversal vulnerabilities that allow unauthenticated remote a… ALTA 2025-02-13
CVE-2025-24200 Apple iOS and iPadOS Apple iOS and iPadOS contains an incorrect authorization vulnerability that allows a physical attacker to disable USB R… MEDIA 2025-02-12
CVE-2024-41710 Mitel SIP Phones Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit, contain an argument in… ALTA 2025-02-12
CVE-2024-40891 Zyxel DSL CPE Devices Multiple Zyxel DSL CPE devices contain a post-authentication command injection vulnerability in the management commands… ALTA 2025-02-11
CVE-2024-40890 Zyxel DSL CPE Devices Multiple Zyxel DSL CPE devices contain a post-authentication command injection vulnerability in the CGI program that co… ALTA 2025-02-11
CVE-2025-21418 Microsoft Windows Microsoft Windows Ancillary Function Driver for WinSock contains a heap-based buffer overflow vulnerability that allows… ALTA 2025-02-11
CVE-2025-21391 Microsoft Windows Microsoft Windows Storage contains a link following vulnerability that could allow for privilege escalation. This vulne… ALTA 2025-02-11
CVE-2025-0994 Trimble Cityworks Trimble Cityworks contains a deserialization vulnerability. This could allow an authenticated user to perform a remote … ALTA 2025-02-07
CVE-2020-15069 Sophos XG Firewall Sophos XG Firewall contains a buffer overflow vulnerability that allows for remote code execution via the "HTTP/S bookm… CRÍTICA 2025-02-06
CVE-2020-29574 Sophos CyberoamOS CyberoamOS (CROS) contains a SQL injection vulnerability in the WebAdmin that allows an unauthenticated attacker to exe… CRÍTICA 2025-02-06
CVE-2024-21413 Microsoft Office Outlook Microsoft Outlook contains an improper input validation vulnerability that allows for remote code execution. Successful… CRÍTICA 2025-02-06
CVE-2022-23748 Audinate Dante Discovery Dante Discovery contains a process control vulnerability in mDNSResponder.exe that all allows for a DLL sideloading att… ALTA 2025-02-06
CVE-2025-0411 7-Zip 7-Zip 7-Zip contains a protection mechanism failure vulnerability that allows remote attackers to bypass the Mark-of-the-Web … ALTA 2025-02-06
CVE-2024-53104 Linux Kernel Linux kernel contains an out-of-bounds write vulnerability in the uvc_parse_streaming component of the USB Video Class … ALTA 2025-02-05
CVE-2018-19410 Paessler PRTG Network Monitor Paessler PRTG Network Monitor contains a local file inclusion vulnerability that allows a remote, unauthenticated attac… CRÍTICA 2025-02-04
CVE-2018-9276 Paessler PRTG Network Monitor Paessler PRTG Network Monitor contains an OS command injection vulnerability that allows an attacker with administrativ… ALTA 2025-02-04
CVE-2024-29059 Microsoft .NET Framework Microsoft .NET Framework contains an information disclosure vulnerability that exposes the ObjRef URI to an attacker, u… ALTA 2025-02-04
CVE-2024-45195 Apache OFBiz Apache OFBiz contains a forced browsing vulnerability that allows a remote attacker to obtain unauthorized access. ALTA 2025-02-04
CVE-2025-24085 Apple Multiple Products Apple iOS, macOS, and other Apple products contain a user-after-free vulnerability that could allow a malicious applica… CRÍTICA 2025-01-29
CVE-2025-23006 SonicWall SMA1000 Appliances SonicWall SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC) contain a deserialization of … CRÍTICA 2025-01-24
CVE-2020-11023 JQuery JQuery JQuery contains a persistent cross-site scripting (XSS) vulnerability. When passing maliciously formed, untrusted input… MEDIA 2025-01-23
CVE-2024-50603 Aviatrix Controllers Aviatrix Controllers contain an OS command injection vulnerability that could allow an unauthenticated attacker to exec… CRÍTICA 2025-01-16
CVE-2025-21335 Microsoft Windows Microsoft Windows Hyper-V NT Kernel Integration VSP contains a use-after-free vulnerability that allows a local attacke… ALTA 2025-01-14
CVE-2025-21334 Microsoft Windows Microsoft Windows Hyper-V NT Kernel Integration VSP contains a use-after-free vulnerability that allows a local attacke… ALTA 2025-01-14
← Anterior Página 15 / 65 (1622 CVEs total) Siguiente →
[INFO] CVE-2026-42897: Vulnerabilidad XSS en Microsoft Exchange Server  ·  [INFO] CVE-2026-20182: Vulnerabilidad Crítica de Bypass de Autenticación en Cisco SD-WAN  ·  [INFO] CVE-2026-42208: Inyección SQL en BerriAI LiteLLM y sus Riesgos de Seguridad  ·  [INFO] CVE-2026-6973: Vulnerabilidad Crítica en Ivanti EPMM Permite Ejecución Remota de Código  ·  [INFO] CVE-2026-0300: Vulnerabilidad Crítica en PAN-OS de Palo Alto Networks Explotada  ·  [INFO] CVE-2026-42897: Vulnerabilidad XSS en Microsoft Exchange Server  ·  [INFO] CVE-2026-20182: Vulnerabilidad Crítica de Bypass de Autenticación en Cisco SD-WAN  ·  [INFO] CVE-2026-42208: Inyección SQL en BerriAI LiteLLM y sus Riesgos de Seguridad  ·  [INFO] CVE-2026-6973: Vulnerabilidad Crítica en Ivanti EPMM Permite Ejecución Remota de Código  ·  [INFO] CVE-2026-0300: Vulnerabilidad Crítica en PAN-OS de Palo Alto Networks Explotada  ·