// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

▶ ¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

🟢 BAJA — 0 CVEs nuevos en el feed reciente
🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

CVEs añadidos este mes

1587

Total KEV catalogados

Vendors afectados

// cves_añadidos_este_mes

CVE	Producto	Criticidad	Añadido
CVE-2026-31431	Linux Kernel	ALTA	2026-05-01

// top_vendors_afectados

Microsoft

19

Cisco

7

Apple

7

Synacor

4

Google

4

Fortinet

3

Ivanti

3

SolarWinds

3

SmarterTools

3

Linux

2

// catalogo_kev_completo

CVE ID	Producto	Descripción	CVSS	Añadido
CVE-2010-4345	Exim Exim	Exim allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate c…	ALTA	2022-03-25
CVE-2010-4344	Exim Exim	Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to ex…	CRÍTICA	2022-03-25
CVE-2010-3035	Cisco IOS XR	Cisco IOS XR, when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).	ALTA	2022-03-25
CVE-2010-2861	Adobe ColdFusion	A directory traversal vulnerability exists in the administrator console in Adobe ColdFusion which allows remote attacke…	CRÍTICA	2022-03-25
CVE-2009-2055	Cisco IOS XR	Cisco IOS XR,when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).	MEDIA	2022-03-25
CVE-2009-1151	phpMyAdmin phpMyAdmin	Setup script used to generate configuration can be fooled using a crafted POST request to include arbitrary PHP code in…	CRÍTICA	2022-03-25
CVE-2009-0927	Adobe Reader and Acrobat	Stack-based buffer overflow in Adobe Reader and Adobe Acrobat allows remote attackers to execute arbitrary code.	ALTA	2022-03-25
CVE-2005-2773	Hewlett Packard (HP) OpenView Network Node Manager	HP OpenView Network Node Manager could allow a remote attacker to execute arbitrary commands on the system.	CRÍTICA	2022-03-25
CVE-2020-5135	SonicWall SonicOS	A buffer overflow vulnerability in SonicOS allows a remote attacker to cause Denial of Service (DoS) and potentially ex…	CRÍTICA	2022-03-15
CVE-2019-1405	Microsoft Windows	A privilege escalation vulnerability exists when the Windows UPnP service improperly allows COM object creation.	ALTA	2022-03-15
CVE-2019-1322	Microsoft Windows	A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who su…	ALTA	2022-03-15
CVE-2019-1315	Microsoft Windows	A privilege escalation vulnerability exists when Windows Error Reporting manager improperly handles hard links. An atta…	ALTA	2022-03-15
CVE-2019-1253	Microsoft Windows	A privilege escalation vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.	ALTA	2022-03-15
CVE-2019-1132	Microsoft Win32k	A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in me…	ALTA	2022-03-15
CVE-2019-1129	Microsoft Windows	A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who success…	ALTA	2022-03-15
CVE-2019-1069	Microsoft Task Scheduler	A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations.	ALTA	2022-03-15
CVE-2019-1064	Microsoft Windows	A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who success…	ALTA	2022-03-15
CVE-2019-0841	Microsoft Windows	A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who success…	ALTA	2022-03-15
CVE-2019-0543	Microsoft Windows	A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who su…	ALTA	2022-03-15
CVE-2018-8120	Microsoft Win32k	A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in me…	ALTA	2022-03-15
CVE-2017-0101	Microsoft Windows	A privilege escalation vulnerability exists when the Windows Transaction Manager improperly handles objects in memory.	ALTA	2022-03-15
CVE-2016-3309	Microsoft Windows	A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory. An atta…	ALTA	2022-03-15
CVE-2015-2546	Microsoft Win32k	The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted applicati…	ALTA	2022-03-15
CVE-2022-26486	Mozilla Firefox	Mozilla Firefox contains a use-after-free vulnerability in WebGPU IPC Framework which can be exploited to perform arbit…	CRÍTICA	2022-03-07
CVE-2022-26485	Mozilla Firefox	Mozilla Firefox contains a use-after-free vulnerability in XSLT parameter processing which can be exploited to perform …	ALTA	2022-03-07

← Anterior Página 44 / 64 (1587 CVEs total) Siguiente →