// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

▶ ¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

🟢 BAJA — 0 CVEs nuevos en el feed reciente
🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

CVEs añadidos este mes

1587

Total KEV catalogados

Vendors afectados

// cves_añadidos_este_mes

CVE	Producto	Criticidad	Añadido
CVE-2026-31431	Linux Kernel	ALTA	2026-05-01

// top_vendors_afectados

Microsoft

19

Cisco

7

Apple

7

Synacor

4

Google

4

Fortinet

3

Ivanti

3

SolarWinds

3

SmarterTools

3

Linux

2

// catalogo_kev_completo

CVE ID	Producto	Descripción	CVSS	Añadido
CVE-2023-32409	Apple Multiple Products	Apple iOS, iPadOS, macOS, tvOS, watchOS, and Safari WebKit contain an unspecified vulnerability that can allow a remote…	ALTA	2023-05-22
CVE-2023-28204	Apple Multiple Products	Apple iOS, iPadOS, macOS, tvOS, watchOS, and Safari WebKit contain an out-of-bounds read vulnerability that may disclos…	MEDIA	2023-05-22
CVE-2023-32373	Apple Multiple Products	Apple iOS, iPadOS, macOS, tvOS, watchOS, and Safari WebKit contain a use-after-free vulnerability that leads to code ex…	ALTA	2023-05-22
CVE-2004-1464	Cisco IOS	Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell (RSH), Secu…	MEDIA	2023-05-19
CVE-2016-6415	Cisco IOS, IOS XR, and IOS XE	Cisco IOS, IOS XR, and IOS XE contain insufficient condition checks in the part of the code that handles Internet Key E…	ALTA	2023-05-19
CVE-2023-21492	Samsung Mobile Devices	Samsung mobile devices running Android 11, 12, and 13 contain an insertion of sensitive information into log file vulne…	MEDIA	2023-05-19
CVE-2023-25717	Ruckus Wireless Multiple Products	Ruckus Wireless Access Point (AP) software contains an unspecified vulnerability in the web services component. If the …	CRÍTICA	2023-05-12
CVE-2021-3560	Red Hat Polkit	Red Hat Polkit contains an incorrect authorization vulnerability through the bypassing of credential checks for D-Bus r…	ALTA	2023-05-12
CVE-2014-0196	Linux Kernel	Linux Kernel contains a race condition vulnerability within the n_tty_write function that allows local users to cause a…	MEDIA	2023-05-12
CVE-2010-3904	Linux Kernel	Linux Kernel contains an improper input validation vulnerability in the Reliable Datagram Sockets (RDS) protocol implem…	ALTA	2023-05-12
CVE-2015-5317	Jenkins Jenkins User Interface (UI)	Jenkins User Interface (UI) contains an information disclosure vulnerability that allows users to see the names of jobs…	ALTA	2023-05-12
CVE-2016-3427	Oracle Java SE and JRockit	Oracle Java SE and JRockit contains an unspecified vulnerability that allows remote attackers to affect confidentiality…	CRÍTICA	2023-05-12
CVE-2016-8735	Apache Tomcat	Apache Tomcat contains an unspecified vulnerability that allows for remote code execution if JmxRemoteLifecycleListener…	CRÍTICA	2023-05-12
CVE-2023-29336	Microsoft Win32k	Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation up to SYSTEM privileges.	ALTA	2023-05-09
CVE-2023-1389	TP-Link Archer AX21	TP-Link Archer AX-21 contains a command injection vulnerability that allows for remote code execution.	ALTA	2023-05-01
CVE-2021-45046	Apache Log4j2	Apache Log4j2 contains a deserialization of untrusted data vulnerability due to the incomplete fix of CVE-2021-44228, w…	CRÍTICA	2023-05-01
CVE-2023-21839	Oracle WebLogic Server	Oracle WebLogic Server contains an unspecified vulnerability that allows an unauthenticated attacker with network acces…	ALTA	2023-05-01
CVE-2023-28432	MinIO MinIO	MinIO contains a vulnerability in a cluster deployment where MinIO returns all environment variables, which allows for …	ALTA	2023-04-21
CVE-2023-27350	PaperCut MF/NG	PaperCut MF/NG contains an improper access control vulnerability within the SetupCompleted class that allows authentica…	CRÍTICA	2023-04-21
CVE-2023-2136	Google Chromium Skia	Google Chromium Skia contains an integer overflow vulnerability that allows a remote attacker, who has compromised the …	CRÍTICA	2023-04-21
CVE-2017-6742	Cisco IOS and IOS XE Software	The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could all…	ALTA	2023-04-19
CVE-2019-8526	Apple macOS	Apple macOS contains a use-after-free vulnerability that could allow for privilege escalation.	ALTA	2023-04-17
CVE-2023-2033	Google Chromium V8	Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit …	ALTA	2023-04-17
CVE-2023-20963	Android Framework	Android Framework contains an unspecified vulnerability that allows for privilege escalation after updating an app to a…	ALTA	2023-04-13
CVE-2023-29492	Novi Survey Novi Survey	Novi Survey contains an insecure deserialization vulnerability that allows remote attackers to execute code on the serv…	CRÍTICA	2023-04-13

← Anterior Página 27 / 64 (1587 CVEs total) Siguiente →