CIBERPLANETA_
// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

  • 🟢 BAJA — 0 CVEs nuevos en el feed reciente
  • 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
  • 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
  • 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

16
CVEs añadidos este mes
1545
Total KEV catalogados
10
Vendors afectados

// cves_añadidos_este_mes

CVE Producto Criticidad Añadido
CVE-2025-66376 Synacor Zimbra Collaboration Suite (ZCS) ALTA 2026-03-18
CVE-2026-20963 Microsoft SharePoint ALTA 2026-03-18
CVE-2025-47813 Wing FTP Server Wing FTP Server MEDIA 2026-03-16
CVE-2026-3910 Google Chromium V8 ALTA 2026-03-13
CVE-2026-3909 Google Skia ALTA 2026-03-13
CVE-2025-68613 n8n n8n CRÍTICA 2026-03-11
CVE-2021-22054 Omnissa Workspace One UEM ALTA 2026-03-09
CVE-2025-26399 SolarWinds Web Help Desk CRÍTICA 2026-03-09
CVE-2026-1603 Ivanti Endpoint Manager (EPM) ALTA 2026-03-09
CVE-2017-7921 Hikvision Multiple Products CRÍTICA 2026-03-05

// top_vendors_afectados

Microsoft
15
Apple
6
Google
5
Cisco
4
Fortinet
4
Synacor
3
SolarWinds
3
Broadcom
3
SmarterTools
3
Gladinet
3

// catalogo_kev_completo

CVE ID Producto Descripción CVSS Añadido
CVE-2016-4437 Apache Shiro Apache Shiro contains a vulnerability which may allow remote attackers to execute code or bypass intended access restri… CRÍTICA 2021-11-03
CVE-2019-17558 Apache Solr The Apache Solr VelocityResponseWriter plug-in contains an unspecified vulnerability which can allow for remote code ex… ALTA 2021-11-03
CVE-2020-17530 Apache Struts Forced Object-Graph Navigation Language (OGNL) evaluation in Apache Struts, when evaluated on raw user input in tag att… CRÍTICA 2021-11-03
CVE-2017-5638 Apache Struts Apache Struts Jakarta Multipart parser allows for malicious file upload using the Content-Type value, leading to remote… CRÍTICA 2021-11-03
CVE-2018-11776 Apache Struts Apache Struts contains a vulnerability that allows for remote code execution under two circumstances. One, where the al… ALTA 2021-11-03
CVE-2021-30858 Apple iOS, iPadOS, and macOS Apple iOS, iPadOS, and macOS WebKit contain a use-after-free vulnerability that leads to code execution when processing… ALTA 2021-11-03
CVE-2019-6223 Apple iOS and macOS Apple iOS and macOS Group FaceTime contains an unspecified vulnerability where the call initiator can cause the recipie… ALTA 2021-11-03
CVE-2021-30860 Apple Multiple Products Apple iOS, iPadOS, macOS, and watchOS CoreGraphics contain an integer overflow vulnerability which may allow code execu… ALTA 2021-11-03
CVE-2020-27930 Apple Multiple Products Apple iOS, iPadOS, macOS, and watchOS FontParser contain a memory corruption vulnerability which may allow for code exe… ALTA 2021-11-03
CVE-2021-30807 Apple Multiple Products Apple iOS, iPadOS, macOS, and watchOS IOMobileFrameBuffer contain a memory corruption vulnerability which may allow an … ALTA 2021-11-03
CVE-2020-27950 Apple Multiple Products Apple iOS, iPadOS, macOS, and watchOS contain a memory initialization vulnerability that may allow a malicious applicat… MEDIA 2021-11-03
CVE-2020-27932 Apple Multiple Products Apple iOS, iPadOS, macOS, and watchOS contain a type confusion vulnerability that may allow a malicious application to … ALTA 2021-11-03
CVE-2020-9818 Apple iOS, iPadOS, and watchOS Apple iOS, iPadOS, and watchOS Mail contains an out-of-bounds write vulnerability which may allow memory modification o… ALTA 2021-11-03
CVE-2020-9819 Apple iOS, iPadOS, and watchOS Apple iOS, iPadOS, and watchOS Mail contains a memory corruption vulnerability that may allow heap corruption when proc… MEDIA 2021-11-03
CVE-2021-30762 Apple iOS Apple iOS WebKit contains a use-after-free vulnerability that leads to code execution when processing maliciously craft… ALTA 2021-11-03
CVE-2021-1782 Apple Multiple Products Apple iOS, iPadOs, macOS, watchOS, and tvOS contain a race condition vulnerability that may allow a malicious applicati… ALTA 2021-11-03
CVE-2021-1870 Apple iOS, iPadOS, and macOS Apple iOS, iPadOS, and macOS WebKit contain an unspecified logic vulnerability that allows a remote attacker to execute… CRÍTICA 2021-11-03
CVE-2021-1871 Apple iOS, iPadOS, and macOS Apple iOS, iPadOS, and macOS WebKit contain an unspecified logic vulnerability that allows a remote attacker to execute… CRÍTICA 2021-11-03
CVE-2021-1879 Apple iOS, iPadOS, and watchOS Apple iOS, iPadOS, and watchOS WebKit contain an unspecified vulnerability that allows for universal cross-site scripti… MEDIA 2021-11-03
CVE-2021-30661 Apple Multiple Products Apple iOS, iPadOS, macOS, tvOS, watchOS, and Safari WebKit Storage contain a use-after-free vulnerability that leads to… ALTA 2021-11-03
CVE-2021-30666 Apple iOS Apple iOS WebKit contains a buffer-overflow vulnerability that leads to code execution when processing maliciously craf… ALTA 2021-11-03
CVE-2021-30713 Apple macOS Apple macOS Transparency, Consent, and Control (TCC) contains an unspecified permissions issue which may allow a malici… ALTA 2021-11-03
CVE-2021-30657 Apple macOS Apple macOS contains an unspecified logic issue in System Preferences that may allow a malicious application to bypass … MEDIA 2021-11-03
CVE-2021-30665 Apple Multiple Products Apple iOS, iPadOS, macOS, watchOS, and tvOS WebKit contain a memory corruption vulnerability that leads to code executi… ALTA 2021-11-03
CVE-2021-30663 Apple Multiple Products Apple iOS, iPadOS, macOS, tvOS, and Safari WebKit contain an integer overflow vulnerability that leads to code executio… ALTA 2021-11-03
← Anterior Página 52 / 62 (1545 CVEs total) Siguiente →
[INFO] La CISA advierte sobre las vulnerabilidades de Zimbra y SharePoint; los ataques de ransomware son un éxito de día cero para Cisco...  ·  [INFO] CVE-2026-20963: Vulnerabilidad Crítica en Microsoft SharePoint Explotada Activamente  ·  [INFO] La OFAC sanciona a una red de trabajadores de TI de la RPDC que financia programas de armas de destrucción masiva mediante falsos ...  ·  [INFO] CVE-2025-66376: Vulnerabilidad XSS en Synacor Zimbra Collaboration Suite  ·  [INFO] El ransomware Interlock aprovecha el CVE-2026-20131 de día cero de Cisco FMC para acceder a la raíz...  ·  [INFO] La CISA advierte sobre las vulnerabilidades de Zimbra y SharePoint; los ataques de ransomware son un éxito de día cero para Cisco...  ·  [INFO] CVE-2026-20963: Vulnerabilidad Crítica en Microsoft SharePoint Explotada Activamente  ·  [INFO] La OFAC sanciona a una red de trabajadores de TI de la RPDC que financia programas de armas de destrucción masiva mediante falsos ...  ·  [INFO] CVE-2025-66376: Vulnerabilidad XSS en Synacor Zimbra Collaboration Suite  ·  [INFO] El ransomware Interlock aprovecha el CVE-2026-20131 de día cero de Cisco FMC para acceder a la raíz...  ·