// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

▶ ¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

🟢 BAJA — 0 CVEs nuevos en el feed reciente
🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

CVEs añadidos este mes

1587

Total KEV catalogados

Vendors afectados

// cves_añadidos_este_mes

CVE	Producto	Criticidad	Añadido
CVE-2026-31431	Linux Kernel	ALTA	2026-05-01

// top_vendors_afectados

Microsoft

19

Cisco

7

Apple

7

Synacor

4

Google

4

Fortinet

3

Ivanti

3

SolarWinds

3

SmarterTools

3

Linux

2

// catalogo_kev_completo

CVE ID	Producto	Descripción	CVSS	Añadido
CVE-2023-28252	Microsoft Windows	Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege …	ALTA	2023-04-11
CVE-2023-28205	Apple Multiple Products	Apple iOS, iPadOS, macOS, and Safari WebKit contain a use-after-free vulnerability that leads to code execution when pr…	ALTA	2023-04-10
CVE-2023-28206	Apple iOS, iPadOS, and macOS	Apple iOS, iPadOS, and macOS IOSurfaceAccelerator contain an out-of-bounds write vulnerability that allows an app to ex…	ALTA	2023-04-10
CVE-2021-27876	Veritas Backup Exec Agent	Veritas Backup Exec (BE) Agent contains a file access vulnerability that could allow an attacker to specially craft inp…	ALTA	2023-04-07
CVE-2021-27877	Veritas Backup Exec Agent	Veritas Backup Exec (BE) Agent contains an improper authentication vulnerability that could allow an attacker unauthori…	ALTA	2023-04-07
CVE-2021-27878	Veritas Backup Exec Agent	Veritas Backup Exec (BE) Agent contains a command execution vulnerability that could allow an attacker to use a data ma…	ALTA	2023-04-07
CVE-2019-1388	Microsoft Windows	Microsoft Windows Certificate Dialog contains a privilege escalation vulnerability, allowing attackers to run processes…	ALTA	2023-04-07
CVE-2023-26083	Arm Mali Graphics Processing Unit (GPU)	Arm Mali GPU Kernel Driver contains an information disclosure vulnerability that allows a non-privileged user to make v…	BAJA	2023-04-07
CVE-2022-27926	Synacor Zimbra Collaboration Suite (ZCS)	Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability by allowing an endpoint URL to a…	MEDIA	2023-04-03
CVE-2013-3163	Microsoft Internet Explorer	Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code or …	ALTA	2023-03-30
CVE-2017-7494	Samba Samba	Samba contains a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writa…	CRÍTICA	2023-03-30
CVE-2022-42948	Fortra Cobalt Strike	Fortra Cobalt Strike User Interface contains an unspecified vulnerability rooted in Java Swing that may allow remote co…	CRÍTICA	2023-03-30
CVE-2022-39197	Fortra Cobalt Strike	Fortra Cobalt Strike contains a cross-site scripting (XSS) vulnerability in Teamserver that would allow an attacker to …	MEDIA	2023-03-30
CVE-2021-30900	Apple iOS, iPadOS, and macOS	Apple GPU drivers, included in iOS, iPadOS, and macOS, contain an out-of-bounds write vulnerability that may allow a ma…	ALTA	2023-03-30
CVE-2022-38181	Arm Mali Graphics Processing Unit (GPU)	Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root pr…	ALTA	2023-03-30
CVE-2023-0266	Linux Kernel	Linux kernel contains a use-after-free vulnerability that allows for privilege escalation to gain ring0 access from the…	ALTA	2023-03-30
CVE-2022-3038	Google Chromium Network Service	Google Chromium Network Service contains a use-after-free vulnerability that allows a remote attacker to potentially ex…	ALTA	2023-03-30
CVE-2022-22706	Arm Mali Graphics Processing Unit (GPU)	Arm Mali GPU Kernel Driver contains an unspecified vulnerability that allows a non-privileged user to achieve write acc…	ALTA	2023-03-30
CVE-2023-26360	Adobe ColdFusion	Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for remote code execution.	ALTA	2023-03-15
CVE-2023-23397	Microsoft Office	Microsoft Office Outlook contains a privilege escalation vulnerability that allows for a NTLM Relay attack against anot…	CRÍTICA	2023-03-14
CVE-2023-24880	Microsoft Windows	Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Ma…	MEDIA	2023-03-14
CVE-2022-41328	Fortinet FortiOS	Fortinet FortiOS contains a path traversal vulnerability that may allow a local privileged attacker to read and write f…	MEDIA	2023-03-14
CVE-2021-39144	XStream XStream	XStream contains a remote code execution vulnerability that allows an attacker to manipulate the processed input stream…	ALTA	2023-03-10
CVE-2020-5741	Plex Media Server	Plex Media Server contains a remote code execution vulnerability that allows an attacker with access to the server admi…	ALTA	2023-03-10
CVE-2022-28810	Zoho ManageEngine	Zoho ManageEngine ADSelfService Plus contains an unspecified vulnerability allowing for remote code execution when perf…	MEDIA	2023-03-07

← Anterior Página 28 / 64 (1587 CVEs total) Siguiente →