CIBERPLANETA_
// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

  • 🟢 BAJA — 0 CVEs nuevos en el feed reciente
  • 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
  • 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
  • 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

1
CVEs añadidos este mes
1587
Total KEV catalogados
10
Vendors afectados

// cves_añadidos_este_mes

CVE Producto Criticidad Añadido
CVE-2026-31431 Linux Kernel ALTA 2026-05-01

// top_vendors_afectados

Microsoft
19
Cisco
7
Apple
7
Synacor
4
Google
4
Fortinet
3
Ivanti
3
SolarWinds
3
SmarterTools
3
Linux
2

// catalogo_kev_completo

CVE ID Producto Descripción CVSS Añadido
CVE-2023-38831 RARLAB WinRAR RARLAB WinRAR contains an unspecified vulnerability that allows an attacker to execute code when a user attempts to vie… ALTA 2023-08-24
CVE-2023-32315 Ignite Realtime Openfire Ignite Realtime Openfire contains a path traversal vulnerability that allows an unauthenticated attacker to access rest… ALTA 2023-08-24
CVE-2023-38035 Ivanti Sentry Ivanti Sentry, formerly known as MobileIron Sentry, contains an authentication bypass vulnerability that may allow an a… CRÍTICA 2023-08-22
CVE-2023-27532 Veeam Backup & Replication Veeam Backup & Replication Cloud Connect component contains a missing authentication for critical function vulnerabilit… ALTA 2023-08-22
CVE-2023-26359 Adobe ColdFusion Adobe ColdFusion contains a deserialization of untrusted data vulnerability that could result in code execution in the … CRÍTICA 2023-08-21
CVE-2023-24489 Citrix Content Collaboration Citrix Content Collaboration contains an improper access control vulnerability that could allow an unauthenticated atta… CRÍTICA 2023-08-16
CVE-2023-38180 Microsoft .NET Core and Visual Studio Microsoft .NET Core and Visual Studio contain an unspecified vulnerability that allows for denial-of-service (DoS). ALTA 2023-08-09
CVE-2017-18368 Zyxel P660HN-T1A Routers Zyxel P660HN-T1A routers contain a command injection vulnerability in the Remote System Log forwarding function, which … CRÍTICA 2023-08-07
CVE-2023-35081 Ivanti Endpoint Manager Mobile (EPMM) Ivanti Endpoint Manager Mobile (EPMM) contains a path traversal vulnerability that enables an authenticated administrat… ALTA 2023-07-31
CVE-2023-37580 Synacor Zimbra Collaboration Suite (ZCS) Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability impacting the confidentiality an… MEDIA 2023-07-27
CVE-2023-38606 Apple Multiple Products Apple iOS, iPadOS, macOS, tvOS, and watchOS contain an unspecified vulnerability allowing an app to modify a sensitive … MEDIA 2023-07-26
CVE-2023-35078 Ivanti Endpoint Manager Mobile (EPMM) Ivanti Endpoint Manager Mobile (EPMM, previously branded MobileIron Core) contains an authentication bypass vulnerabili… CRÍTICA 2023-07-25
CVE-2023-29298 Adobe ColdFusion Adobe ColdFusion contains an improper access control vulnerability that allows for a security feature bypass. ALTA 2023-07-20
CVE-2023-38205 Adobe ColdFusion Adobe ColdFusion contains an improper access control vulnerability that allows for a security feature bypass. ALTA 2023-07-20
CVE-2023-3519 Citrix NetScaler ADC and NetScaler Gateway Citrix NetScaler ADC and NetScaler Gateway contains a code injection vulnerability that allows for unauthenticated remo… CRÍTICA 2023-07-19
CVE-2023-36884 Microsoft Windows Microsoft Windows Search contains an unspecified vulnerability that could allow an attacker to evade Mark of the Web (M… ALTA 2023-07-17
CVE-2022-29303 SolarView Compact SolarView Compact contains a command injection vulnerability due to improper validation of input values on the send tes… CRÍTICA 2023-07-13
CVE-2023-37450 Apple Multiple Products Apple iOS, iPadOS, macOS, and Safari WebKit contain an unspecified vulnerability that leads to code execution when proc… ALTA 2023-07-13
CVE-2023-32046 Microsoft Windows Microsoft Windows MSHTML Platform contains an unspecified vulnerability that allows for privilege escalation. ALTA 2023-07-11
CVE-2023-32049 Microsoft Windows Microsoft Windows Defender SmartScreen contains a security feature bypass vulnerability that allows an attacker to bypa… ALTA 2023-07-11
CVE-2023-35311 Microsoft Outlook Microsoft Outlook contains a security feature bypass vulnerability that allows an attacker to bypass the Microsoft Outl… ALTA 2023-07-11
CVE-2023-36874 Microsoft Windows Microsoft Windows Error Reporting Service contains an unspecified vulnerability that allows for privilege escalation. ALTA 2023-07-11
CVE-2022-31199 Netwrix Auditor Netwrix Auditor User Activity Video Recording component contains an insecure objection deserialization vulnerability th… CRÍTICA 2023-07-11
CVE-2021-29256 Arm Mali Graphics Processing Unit (GPU) Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root pr… ALTA 2023-07-07
CVE-2019-17621 D-Link DIR-859 Router D-Link DIR-859 router contains a command execution vulnerability in the UPnP endpoint URL, /gena.cgi. Exploitation allo… CRÍTICA 2023-06-29
← Anterior Página 25 / 64 (1587 CVEs total) Siguiente →
[INFO] CVE-2026-31431: Vulnerabilidad de Escalada de Privilegios en Linux Kernel  ·  [INFO] CVE-2026-41940: Vulnerabilidad Crítica de Bypass de Autenticación en cPanel & WHM y WP2  ·  [INFO] CVE-2024-1708: Path Traversal en ConnectWise ScreenConnect Explotado Activamente  ·  [INFO] CVE-2026-32202: Fallo en Mecanismo de Protección en Microsoft Windows  ·  [INFO] CVE-2024-57726: Vulnerabilidad Crítica de Autorización en SimpleHelp  ·  [INFO] CVE-2026-31431: Vulnerabilidad de Escalada de Privilegios en Linux Kernel  ·  [INFO] CVE-2026-41940: Vulnerabilidad Crítica de Bypass de Autenticación en cPanel & WHM y WP2  ·  [INFO] CVE-2024-1708: Path Traversal en ConnectWise ScreenConnect Explotado Activamente  ·  [INFO] CVE-2026-32202: Fallo en Mecanismo de Protección en Microsoft Windows  ·  [INFO] CVE-2024-57726: Vulnerabilidad Crítica de Autorización en SimpleHelp  ·