// threat_intelligence_dashboard
Dashboard de Amenazas
Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)
▶ ¿Cómo se calcula el nivel de amenaza global?
El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:
- 🟢 BAJA — 0 CVEs nuevos en el feed reciente
- 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
- 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
- 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados
Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.
14
CVEs añadidos este mes
1543
Total KEV catalogados
10
Vendors afectados
// cves_añadidos_este_mes
| CVE | Producto | Criticidad | Añadido |
|---|---|---|---|
| CVE-2025-47813 | Wing FTP Server Wing FTP Server | MEDIA | 2026-03-16 |
| CVE-2026-3910 | Google Chromium V8 | ALTA | 2026-03-13 |
| CVE-2026-3909 | Google Skia | ALTA | 2026-03-13 |
| CVE-2025-68613 | n8n n8n | CRÍTICA | 2026-03-11 |
| CVE-2021-22054 | Omnissa Workspace One UEM | ALTA | 2026-03-09 |
| CVE-2025-26399 | SolarWinds Web Help Desk | CRÍTICA | 2026-03-09 |
| CVE-2026-1603 | Ivanti Endpoint Manager (EPM) | ALTA | 2026-03-09 |
| CVE-2017-7921 | Hikvision Multiple Products | CRÍTICA | 2026-03-05 |
| CVE-2021-22681 | Rockwell Multiple Products | CRÍTICA | 2026-03-05 |
| CVE-2023-43000 | Apple Multiple Products | ALTA | 2026-03-05 |
// top_vendors_afectados
14
6
5
4
4
3
3
3
3
2
// catalogo_kev_completo
| CVE ID | Producto | CVSS |
|---|---|---|
| CVE-2022-1364 | Google Chromium V8 | ALTA |
| CVE-2019-3929 | Crestron Multiple Products | CRÍTICA |
| CVE-2019-16057 | D-Link DNS-320 Storage Device | CRÍTICA |
| CVE-2018-7841 | Schneider Electric U.motion Builder | CRÍTICA |
| CVE-2016-4523 | Trihedral VTScada (formerly VTS) | ALTA |
| CVE-2014-0780 | InduSoft Web Studio | CRÍTICA |
| CVE-2010-5330 | Ubiquiti AirOS | CRÍTICA |
| CVE-2007-3010 | Alcatel OmniPCX Enterprise | CRÍTICA |
| CVE-2022-22954 | VMware Workspace ONE Access and Identity Manager | CRÍTICA |
| CVE-2022-24521 | Microsoft Windows | ALTA |
| CVE-2018-7602 | Drupal Core | CRÍTICA |
| CVE-2018-20753 | Kaseya Virtual System/Server Administrator (VSA) | CRÍTICA |
| CVE-2015-5123 | Adobe Flash Player | CRÍTICA |
| CVE-2015-5122 | Adobe Flash Player | CRÍTICA |
| CVE-2015-3113 | Adobe Flash Player | CRÍTICA |
| CVE-2015-2502 | Microsoft Internet Explorer | ALTA |
| CVE-2015-0313 | Adobe Flash Player | CRÍTICA |
| CVE-2015-0311 | Adobe Flash Player | CRÍTICA |
| CVE-2014-9163 | Adobe Flash Player | ALTA |
| CVE-2022-23176 | WatchGuard Firebox and XTM | ALTA |
| CVE-2021-42287 | Microsoft Active Directory | ALTA |
| CVE-2021-42278 | Microsoft Active Directory | ALTA |
| CVE-2021-39793 | Google Pixel | ALTA |
| CVE-2021-27852 | Checkbox Checkbox Survey | CRÍTICA |
| CVE-2021-22600 | Linux Kernel | MEDIA |