// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

▶ ¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

🟢 BAJA — 0 CVEs nuevos en el feed reciente
🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

CVEs añadidos este mes

1587

Total KEV catalogados

Vendors afectados

// cves_añadidos_este_mes

CVE	Producto	Criticidad	Añadido
CVE-2026-31431	Linux Kernel	ALTA	2026-05-01

// top_vendors_afectados

Microsoft

19

Cisco

7

Apple

7

Synacor

4

Google

4

Fortinet

3

Ivanti

3

SolarWinds

3

SmarterTools

3

Linux

2

// catalogo_kev_completo

CVE ID	Producto	Descripción	CVSS	Añadido
CVE-2021-21973	VMware vCenter Server and Cloud Foundation	VMware vCenter Server and Cloud Foundation Server contain a SSRF vulnerability due to improper validation of URLs in a …	MEDIA	2022-03-07
CVE-2020-8218	Pulse Secure Pulse Connect Secure	A code injection vulnerability exists in Pulse Connect Secure that allows an attacker to crafted a URI to perform an ar…	ALTA	2022-03-07
CVE-2019-11581	Atlassian Jira Server and Data Center	Atlassian Jira Server and Data Center contain a server-side template injection vulnerability which can allow for remote…	CRÍTICA	2022-03-07
CVE-2017-6077	NETGEAR Wireless Router DGN2200	NETGEAR DGN2200 wireless routers contain a vulnerability that allows for remote code execution.	CRÍTICA	2022-03-07
CVE-2016-6277	NETGEAR Multiple Routers	NETGEAR confirmed multiple routers allow unauthenticated web pages to pass form input directly to the command-line inte…	ALTA	2022-03-07
CVE-2013-0631	Adobe ColdFusion	Adobe Coldfusion contains an unspecified vulnerability, which could result in information disclosure from a compromised…	ALTA	2022-03-07
CVE-2013-0629	Adobe ColdFusion	Adobe Coldfusion contains a directory traversal vulnerability, which could permit an unauthorized user access to restri…	ALTA	2022-03-07
CVE-2013-0625	Adobe ColdFusion	Adobe Coldfusion contains an authentication bypass vulnerability, which could result in an unauthorized user gaining ad…	CRÍTICA	2022-03-07
CVE-2009-3960	Adobe BlazeDS	Adobe BlazeDS, which is utilized in LifeCycle and Coldfusion, contains a vulnerability that allows for information disc…	MEDIA	2022-03-07
CVE-2022-20708	Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers	A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any…	CRÍTICA	2022-03-03
CVE-2022-20703	Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers	A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any…	CRÍTICA	2022-03-03
CVE-2022-20701	Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers	A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any…	CRÍTICA	2022-03-03
CVE-2022-20700	Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers	A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any…	CRÍTICA	2022-03-03
CVE-2022-20699	Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers	A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any…	CRÍTICA	2022-03-03
CVE-2021-41379	Microsoft Windows	Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation.	MEDIA	2022-03-03
CVE-2020-1938	Apache Tomcat	Apache Tomcat treats Apache JServ Protocol (AJP) connections as having higher trust than, for example, a similar HTTP c…	CRÍTICA	2022-03-03
CVE-2020-11899	Treck TCP/IP stack IPv6	The Treck TCP/IP stack contains an IPv6 out-of-bounds read vulnerability.	MEDIA	2022-03-03
CVE-2019-16928	Exim Exim Internet Mailer	Exim contains an out-of-bounds write vulnerability which can allow for remote code execution.	CRÍTICA	2022-03-03
CVE-2019-1652	Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers	A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Rout…	ALTA	2022-03-03
CVE-2019-1297	Microsoft Excel	A remote code execution vulnerability exists in Microsoft Excel when the software fails to properly handle objects in m…	ALTA	2022-03-03
CVE-2018-8581	Microsoft Exchange Server	A privilege escalation vulnerability exists in Microsoft Exchange Server. An attacker who successfully exploited this v…	ALTA	2022-03-03
CVE-2018-8298	ChakraCore ChakraCore scripting engine	The ChakraCore scripting engine contains a type confusion vulnerability which can allow for remote code execution.	ALTA	2022-03-03
CVE-2018-0180	Cisco IOS Software	A vulnerability in the Login Enhancements (Login Block) feature of Cisco IOS Software could allow an unauthenticated, r…	MEDIA	2022-03-03
CVE-2018-0179	Cisco IOS Software	A vulnerability in the Login Enhancements (Login Block) feature of Cisco IOS Software could allow an unauthenticated, r…	MEDIA	2022-03-03
CVE-2018-0175	Cisco IOS, XR, and XE Software	Format string vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE S…	ALTA	2022-03-03

← Anterior Página 45 / 64 (1587 CVEs total) Siguiente →