CIBERPLANETA_
// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

  • 🟢 BAJA — 0 CVEs nuevos en el feed reciente
  • 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
  • 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
  • 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

14
CVEs añadidos este mes
1543
Total KEV catalogados
10
Vendors afectados

// cves_añadidos_este_mes

CVE Producto Criticidad Añadido
CVE-2025-47813 Wing FTP Server Wing FTP Server MEDIA 2026-03-16
CVE-2026-3910 Google Chromium V8 ALTA 2026-03-13
CVE-2026-3909 Google Skia ALTA 2026-03-13
CVE-2025-68613 n8n n8n CRÍTICA 2026-03-11
CVE-2021-22054 Omnissa Workspace One UEM ALTA 2026-03-09
CVE-2025-26399 SolarWinds Web Help Desk CRÍTICA 2026-03-09
CVE-2026-1603 Ivanti Endpoint Manager (EPM) ALTA 2026-03-09
CVE-2017-7921 Hikvision Multiple Products CRÍTICA 2026-03-05
CVE-2021-22681 Rockwell Multiple Products CRÍTICA 2026-03-05
CVE-2023-43000 Apple Multiple Products ALTA 2026-03-05

// top_vendors_afectados

Microsoft
14
Apple
6
Google
5
Cisco
4
Fortinet
4
SolarWinds
3
Broadcom
3
SmarterTools
3
Gladinet
3
Ivanti
2

// catalogo_kev_completo

CVE ID Producto Descripción CVSS Añadido
CVE-2018-8120 Microsoft Win32k A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in me… ALTA 2022-03-15
CVE-2017-0101 Microsoft Windows A privilege escalation vulnerability exists when the Windows Transaction Manager improperly handles objects in memory. ALTA 2022-03-15
CVE-2016-3309 Microsoft Windows A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory. An atta… ALTA 2022-03-15
CVE-2015-2546 Microsoft Win32k The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted applicati… ALTA 2022-03-15
CVE-2022-26486 Mozilla Firefox Mozilla Firefox contains a use-after-free vulnerability in WebGPU IPC Framework which can be exploited to perform arbit… CRÍTICA 2022-03-07
CVE-2022-26485 Mozilla Firefox Mozilla Firefox contains a use-after-free vulnerability in XSLT parameter processing which can be exploited to perform … ALTA 2022-03-07
CVE-2021-21973 VMware vCenter Server and Cloud Foundation VMware vCenter Server and Cloud Foundation Server contain a SSRF vulnerability due to improper validation of URLs in a … MEDIA 2022-03-07
CVE-2020-8218 Pulse Secure Pulse Connect Secure A code injection vulnerability exists in Pulse Connect Secure that allows an attacker to crafted a URI to perform an ar… ALTA 2022-03-07
CVE-2019-11581 Atlassian Jira Server and Data Center Atlassian Jira Server and Data Center contain a server-side template injection vulnerability which can allow for remote… CRÍTICA 2022-03-07
CVE-2017-6077 NETGEAR Wireless Router DGN2200 NETGEAR DGN2200 wireless routers contain a vulnerability that allows for remote code execution. CRÍTICA 2022-03-07
CVE-2016-6277 NETGEAR Multiple Routers NETGEAR confirmed multiple routers allow unauthenticated web pages to pass form input directly to the command-line inte… ALTA 2022-03-07
CVE-2013-0631 Adobe ColdFusion Adobe Coldfusion contains an unspecified vulnerability, which could result in information disclosure from a compromised… ALTA 2022-03-07
CVE-2013-0629 Adobe ColdFusion Adobe Coldfusion contains a directory traversal vulnerability, which could permit an unauthorized user access to restri… ALTA 2022-03-07
CVE-2013-0625 Adobe ColdFusion Adobe Coldfusion contains an authentication bypass vulnerability, which could result in an unauthorized user gaining ad… CRÍTICA 2022-03-07
CVE-2009-3960 Adobe BlazeDS Adobe BlazeDS, which is utilized in LifeCycle and Coldfusion, contains a vulnerability that allows for information disc… MEDIA 2022-03-07
CVE-2022-20708 Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any… CRÍTICA 2022-03-03
CVE-2022-20703 Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any… CRÍTICA 2022-03-03
CVE-2022-20701 Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any… CRÍTICA 2022-03-03
CVE-2022-20700 Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any… CRÍTICA 2022-03-03
CVE-2022-20699 Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any… CRÍTICA 2022-03-03
CVE-2021-41379 Microsoft Windows Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation. MEDIA 2022-03-03
CVE-2020-1938 Apache Tomcat Apache Tomcat treats Apache JServ Protocol (AJP) connections as having higher trust than, for example, a similar HTTP c… CRÍTICA 2022-03-03
CVE-2020-11899 Treck TCP/IP stack IPv6 The Treck TCP/IP stack contains an IPv6 out-of-bounds read vulnerability. MEDIA 2022-03-03
CVE-2019-16928 Exim Exim Internet Mailer Exim contains an out-of-bounds write vulnerability which can allow for remote code execution. CRÍTICA 2022-03-03
CVE-2019-1652 Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Rout… ALTA 2022-03-03
← Anterior Página 43 / 62 (1543 CVEs total) Siguiente →
[INFO] El ransomware Interlock aprovecha el CVE-2026-20131 de día cero de Cisco FMC para acceder a la raíz...  ·  [INFO] Nueve fallos críticos de KVM IP permiten el acceso root no autenticado en cuatro proveedores...  ·  [INFO] Claude Code Security y Magecart: Cómo definir bien el modelo de amenazas...  ·  [INFO] Tutorial del producto: Cómo Mesh CSMA revela y rompe los caminos de ataque hacia Crown Jewels...  ·  [INFO] El error CVE-2026-3888 de Ubuntu permite a los atacantes hacerse con el root mediante el exploit de sincronización de limpieza de ...  ·  [INFO] El ransomware Interlock aprovecha el CVE-2026-20131 de día cero de Cisco FMC para acceder a la raíz...  ·  [INFO] Nueve fallos críticos de KVM IP permiten el acceso root no autenticado en cuatro proveedores...  ·  [INFO] Claude Code Security y Magecart: Cómo definir bien el modelo de amenazas...  ·  [INFO] Tutorial del producto: Cómo Mesh CSMA revela y rompe los caminos de ataque hacia Crown Jewels...  ·  [INFO] El error CVE-2026-3888 de Ubuntu permite a los atacantes hacerse con el root mediante el exploit de sincronización de limpieza de ...  ·