CIBERPLANETA_
// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

  • 🟢 BAJA — 0 CVEs nuevos en el feed reciente
  • 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
  • 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
  • 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

1
CVEs añadidos este mes
1587
Total KEV catalogados
10
Vendors afectados

// cves_añadidos_este_mes

CVE Producto Criticidad Añadido
CVE-2026-31431 Linux Kernel ALTA 2026-05-01

// top_vendors_afectados

Microsoft
19
Cisco
7
Apple
7
Synacor
4
Google
4
Fortinet
3
Ivanti
3
SolarWinds
3
SmarterTools
3
Linux
2

// catalogo_kev_completo

CVE ID Producto Descripción CVSS Añadido
CVE-2024-4947 Google Chromium V8 Google Chromium V8 contains a type confusion vulnerability that allows a remote attacker to execute code via a crafted … CRÍTICA 2024-05-20
CVE-2023-43208 NextGen Healthcare Mirth Connect NextGen Healthcare Mirth Connect contains a deserialization of untrusted data vulnerability that allows for unauthentic… CRÍTICA 2024-05-20
CVE-2024-4761 Google Chromium V8 Google Chromium V8 Engine contains an unspecified out-of-bounds memory write vulnerability via a crafted HTML page. Thi… ALTA 2024-05-16
CVE-2021-40655 D-Link DIR-605 Router D-Link DIR-605 routers contain an information disclosure vulnerability that allows attackers to obtain a username and p… ALTA 2024-05-16
CVE-2014-100005 D-Link DIR-600 Router D-Link DIR-600 routers contain a cross-site request forgery (CSRF) vulnerability that allows an attacker to change rout… ALTA 2024-05-16
CVE-2024-30040 Microsoft Windows Microsoft Windows MSHTML Platform contains an unspecified vulnerability that allows for a security feature bypass. ALTA 2024-05-14
CVE-2024-30051 Microsoft DWM Core Library Microsoft DWM Core Library contains a privilege escalation vulnerability that allows an attacker to gain SYSTEM privile… ALTA 2024-05-14
CVE-2024-4671 Google Chromium Google Chromium Visuals contains a use-after-free vulnerability that allows a remote attacker to exploit heap corruptio… CRÍTICA 2024-05-13
CVE-2023-7028 GitLab GitLab CE/EE GitLab Community and Enterprise Editions contain an improper access control vulnerability. This allows an attacker to t… CRÍTICA 2024-05-01
CVE-2024-29988 Microsoft SmartScreen Prompt Microsoft SmartScreen Prompt contains a security feature bypass vulnerability that allows an attacker to bypass the Mar… ALTA 2024-04-30
CVE-2024-4040 CrushFTP CrushFTP CrushFTP contains an unspecified sandbox escape vulnerability that allows a remote attacker to escape the CrushFTP virt… CRÍTICA 2024-04-24
CVE-2024-20359 Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain a privilege escalation vulnerability… MEDIA 2024-04-24
CVE-2024-20353 Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an infinite loop vulnerability that … ALTA 2024-04-24
CVE-2022-38028 Microsoft Windows Microsoft Windows Print Spooler service contains a privilege escalation vulnerability. An attacker may modify a JavaScr… ALTA 2024-04-23
CVE-2024-3400 Palo Alto Networks PAN-OS Palo Alto Networks PAN-OS GlobalProtect feature contains a command injection vulnerability that allows an unauthenticat… CRÍTICA 2024-04-12
CVE-2024-3273 D-Link Multiple NAS Devices D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contain a command injection vulnerability. When combined with CVE-2024… ALTA 2024-04-11
CVE-2024-3272 D-Link Multiple NAS Devices D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contains a hard-coded credential that allows an attacker to conduct au… CRÍTICA 2024-04-11
CVE-2024-29748 Android Pixel Android Pixel contains a privilege escalation vulnerability that allows an attacker to interrupt a factory reset trigge… ALTA 2024-04-04
CVE-2024-29745 Android Pixel Android Pixel contains an information disclosure vulnerability in the fastboot firmware used to support unlocking, flas… MEDIA 2024-04-04
CVE-2023-24955 Microsoft SharePoint Server Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Own… ALTA 2024-03-26
CVE-2019-7256 Nice Linear eMerge E3-Series Nice Linear eMerge E3-Series contains an OS command injection vulnerability that allows an attacker to conduct remote c… CRÍTICA 2024-03-25
CVE-2021-44529 Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) contains a code injection vulnerability that allows an unauth… CRÍTICA 2024-03-25
CVE-2023-48788 Fortinet FortiClient EMS Fortinet FortiClient EMS contains a SQL injection vulnerability that allows an unauthenticated attacker to execute comm… CRÍTICA 2024-03-25
CVE-2024-27198 JetBrains TeamCity JetBrains TeamCity contains an authentication bypass vulnerability that allows an attacker to perform admin actions. CRÍTICA 2024-03-07
CVE-2024-23225 Apple Multiple Products Apple iOS, iPadOS, macOS, tvOS, watchOS, and visionOS kernel contain a memory corruption vulnerability that allows an a… ALTA 2024-03-06
← Anterior Página 20 / 64 (1587 CVEs total) Siguiente →
[INFO] CVE-2026-31431: Vulnerabilidad de Escalada de Privilegios en Linux Kernel  ·  [INFO] CVE-2026-41940: Vulnerabilidad Crítica de Bypass de Autenticación en cPanel & WHM y WP2  ·  [INFO] CVE-2024-1708: Path Traversal en ConnectWise ScreenConnect Explotado Activamente  ·  [INFO] CVE-2026-32202: Fallo en Mecanismo de Protección en Microsoft Windows  ·  [INFO] CVE-2024-57726: Vulnerabilidad Crítica de Autorización en SimpleHelp  ·  [INFO] CVE-2026-31431: Vulnerabilidad de Escalada de Privilegios en Linux Kernel  ·  [INFO] CVE-2026-41940: Vulnerabilidad Crítica de Bypass de Autenticación en cPanel & WHM y WP2  ·  [INFO] CVE-2024-1708: Path Traversal en ConnectWise ScreenConnect Explotado Activamente  ·  [INFO] CVE-2026-32202: Fallo en Mecanismo de Protección en Microsoft Windows  ·  [INFO] CVE-2024-57726: Vulnerabilidad Crítica de Autorización en SimpleHelp  ·