// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

▶ ¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

🟢 BAJA — 0 CVEs nuevos en el feed reciente
🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

CVEs añadidos este mes

1545

Total KEV catalogados

Vendors afectados

// cves_añadidos_este_mes

CVE	Producto	Criticidad	Añadido
CVE-2025-66376	Synacor Zimbra Collaboration Suite (ZCS)	ALTA	2026-03-18
CVE-2026-20963	Microsoft SharePoint	ALTA	2026-03-18
CVE-2025-47813	Wing FTP Server Wing FTP Server	MEDIA	2026-03-16
CVE-2026-3910	Google Chromium V8	ALTA	2026-03-13
CVE-2026-3909	Google Skia	ALTA	2026-03-13
CVE-2025-68613	n8n n8n	CRÍTICA	2026-03-11
CVE-2021-22054	Omnissa Workspace One UEM	ALTA	2026-03-09
CVE-2025-26399	SolarWinds Web Help Desk	CRÍTICA	2026-03-09
CVE-2026-1603	Ivanti Endpoint Manager (EPM)	ALTA	2026-03-09
CVE-2017-7921	Hikvision Multiple Products	CRÍTICA	2026-03-05

// top_vendors_afectados

Microsoft

15

Apple

6

Google

5

Cisco

4

Fortinet

4

Synacor

3

SolarWinds

3

Broadcom

3

SmarterTools

3

Gladinet

3

// catalogo_kev_completo

CVE ID	Producto	Descripción	CVSS	Añadido
CVE-2011-3544	Oracle Java SE JDK and JRE	An access control vulnerability exists in the Applet Rhino Script Engine component of Oracle's Java Runtime Environment…	CRÍTICA	2022-03-03
CVE-2011-1889	Microsoft Forefront Threat Management Gateway (TMG)	A remote code execution vulnerability exists in the Forefront Threat Management Gateway (TMG) Firewall Client Winsock p…	CRÍTICA	2022-03-03
CVE-2011-0611	Adobe Flash Player	Adobe Flash Player contains a vulnerability that allows remote attackers to execute arbitrary code or cause a denial of…	ALTA	2022-03-03
CVE-2010-3333	Microsoft Office	A stack-based buffer overflow vulnerability exists in the parsing of RTF data in Microsoft Office and earlier allows an…	ALTA	2022-03-03
CVE-2010-0232	Microsoft Windows	The kernel in Microsoft Windows, when access to 16-bit applications is enabled on a 32-bit x86 platform, does not prope…	ALTA	2022-03-03
CVE-2010-0188	Adobe Reader and Acrobat	Unspecified vulnerability in Adobe Reader and Acrobat allows attackers to cause a denial of service or possibly execute…	ALTA	2022-03-03
CVE-2009-3129	Microsoft Excel	Microsoft Office Excel allows remote attackers to execute arbitrary code via a spreadsheet with a FEATHEADER record con…	ALTA	2022-03-03
CVE-2009-1123	Microsoft Windows	The kernel in Microsoft Windows does not properly validate changes to unspecified kernel objects, which allows local us…	ALTA	2022-03-03
CVE-2008-3431	Oracle VirtualBox	An input validation vulnerability exists in the VBoxDrv.sys driver of Sun xVM VirtualBox which allows attackers to loca…	ALTA	2022-03-03
CVE-2008-2992	Adobe Acrobat and Reader	Adobe Acrobat and Reader contain an input validation issue in a JavaScript method that could potentially lead to remote…	ALTA	2022-03-03
CVE-2004-0210	Microsoft Windows	A privilege elevation vulnerability exists in the POSIX subsystem. This vulnerability could allow a logged on user to t…	ALTA	2022-03-03
CVE-2002-0367	Microsoft Windows	smss.exe debugging subsystem in Microsoft Windows does not properly authenticate programs that connect to other program…	ALTA	2022-03-03
CVE-2022-24682	Synacor Zimbra Collaborate Suite (ZCS)	Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting (XSS) vulnerability in the Calendar feature th…	MEDIA	2022-02-25
CVE-2017-8570	Microsoft Office	A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in m…	ALTA	2022-02-25
CVE-2017-0222	Microsoft Internet Explorer	A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory.	ALTA	2022-02-25
CVE-2014-6352	Microsoft Windows	Microsoft Windows allow remote attackers to execute arbitrary code via a crafted OLE object.	ALTA	2022-02-25
CVE-2022-23131	Zabbix Frontend	Unsafe client-side session storage leading to authentication bypass/instance takeover via Zabbix Frontend with configur…	CRÍTICA	2022-02-22
CVE-2022-23134	Zabbix Frontend	Malicious actors can pass step checks and potentially change the configuration of Zabbix Frontend.	BAJA	2022-02-22
CVE-2022-24086	Adobe Commerce and Magento Open Source	Adobe Commerce and Magento Open Source contain an improper input validation vulnerability which can allow for arbitrary…	CRÍTICA	2022-02-15
CVE-2022-0609	Google Chromium Animation	Google Chromium Animation contains a use-after-free vulnerability that allows a remote attacker to potentially exploit …	ALTA	2022-02-15
CVE-2019-0752	Microsoft Internet Explorer	A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet…	ALTA	2022-02-15
CVE-2018-8174	Microsoft Windows	A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Window…	ALTA	2022-02-15
CVE-2018-20250	RARLAB WinRAR	WinRAR Absolute Path Traversal vulnerability leads to Remote Code Execution	ALTA	2022-02-15
CVE-2018-15982	Adobe Flash Player	Adobe Flash Player com.adobe.tvsdk.mediacore.metadata Use After Free Vulnerability	ALTA	2022-02-15
CVE-2017-9841	PHPUnit PHPUnit	PHPUnit allows remote attackers to execute arbitrary PHP code via HTTP POST data beginning with a "<?php " substring, a…	CRÍTICA	2022-02-15

← Anterior Página 47 / 62 (1545 CVEs total) Siguiente →