CIBERPLANETA_
// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

  • 🟢 BAJA — 0 CVEs nuevos en el feed reciente
  • 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
  • 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
  • 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

16
CVEs añadidos este mes
1545
Total KEV catalogados
10
Vendors afectados

// cves_añadidos_este_mes

CVE Producto Criticidad Añadido
CVE-2025-66376 Synacor Zimbra Collaboration Suite (ZCS) ALTA 2026-03-18
CVE-2026-20963 Microsoft SharePoint ALTA 2026-03-18
CVE-2025-47813 Wing FTP Server Wing FTP Server MEDIA 2026-03-16
CVE-2026-3910 Google Chromium V8 ALTA 2026-03-13
CVE-2026-3909 Google Skia ALTA 2026-03-13
CVE-2025-68613 n8n n8n CRÍTICA 2026-03-11
CVE-2021-22054 Omnissa Workspace One UEM ALTA 2026-03-09
CVE-2025-26399 SolarWinds Web Help Desk CRÍTICA 2026-03-09
CVE-2026-1603 Ivanti Endpoint Manager (EPM) ALTA 2026-03-09
CVE-2017-7921 Hikvision Multiple Products CRÍTICA 2026-03-05

// top_vendors_afectados

Microsoft
15
Apple
6
Google
5
Cisco
4
Fortinet
4
Synacor
3
SolarWinds
3
Broadcom
3
SmarterTools
3
Gladinet
3

// catalogo_kev_completo

CVE ID Producto Descripción CVSS Añadido
CVE-2020-8195 Citrix Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an information disclosure vulnera… MEDIA 2021-11-03
CVE-2020-8196 Citrix Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an information disclosure vulnera… MEDIA 2021-11-03
CVE-2019-19781 Citrix Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an unspecified vulnerability that… CRÍTICA 2021-11-03
CVE-2019-11634 Citrix Workspace Application and Receiver for Windows Citrix Workspace Application and Receiver for Windows contains remote code execution vulnerability resulting from local… CRÍTICA 2021-11-03
CVE-2020-29557 D-Link DIR-825 R1 Devices D-Link DIR-825 R1 devices contain a buffer overflow vulnerability in the web interface that may allow for remote code e… CRÍTICA 2021-11-03
CVE-2020-25506 D-Link DNS-320 Device D-Link DNS-320 device contains a command injection vulnerability in the sytem_mgr.cgi component that may allow for remo… CRÍTICA 2021-11-03
CVE-2018-15811 DotNetNuke (DNN) DotNetNuke (DNN) DotNetNuke (DNN) contains an inadequate encryption strength vulnerability resulting from the use of a weak encryption a… ALTA 2021-11-03
CVE-2018-18325 DotNetNuke (DNN) DotNetNuke (DNN) DotNetNuke (DNN) contains an inadequate encryption strength vulnerability resulting from the use of a weak encryption a… ALTA 2021-11-03
CVE-2017-9822 DotNetNuke (DNN) DotNetNuke (DNN) DotNetNuke (DNN) contains a vulnerability that may allow for remote code execution via cookie deserialization. ALTA 2021-11-03
CVE-2019-15752 Docker Desktop Community Edition Docker Desktop Community Edition contains a vulnerability that may allow local users to escalate privileges by placing … ALTA 2021-11-03
CVE-2020-8515 DrayTek Multiple Vigor Routers DrayTek Vigor3900, Vigor2960, and Vigor300B routers contain an unspecified vulnerability that allows for remote code ex… CRÍTICA 2021-11-03
CVE-2018-7600 Drupal Drupal Core Drupal Core contains a remote code execution vulnerability that could allow an attacker to exploit multiple attack vect… CRÍTICA 2021-11-03
CVE-2021-22205 GitLab Community and Enterprise Editions GitHub Community and Enterprise Editions that utilize the ability to upload images through GitLab Workhorse are vulnera… CRÍTICA 2021-11-03
CVE-2018-6789 Exim Exim Exim contains a buffer overflow vulnerability in the base64d function part of the SMTP listener that may allow for remo… CRÍTICA 2021-11-03
CVE-2020-8657 EyesOfNetwork EyesOfNetwork EyesOfNetwork contains a use of hard-coded credentials vulnerability, as it uses the same API key by default. Exploitat… CRÍTICA 2021-11-03
CVE-2020-8655 EyesOfNetwork EyesOfNetwork EyesOfNetwork contains an improper privilege management vulnerability that may allow a user to run commands as root via… ALTA 2021-11-03
CVE-2020-5902 F5 BIG-IP F5 BIG-IP Traffic Management User Interface (TMUI) contains a remote code execution vulnerability in undisclosed pages. CRÍTICA 2021-11-03
CVE-2021-22986 F5 BIG-IP and BIG-IQ Centralized Management F5 BIG-IP and BIG-IQ Centralized Management contain a remote code execution vulnerability in the iControl REST interfac… CRÍTICA 2021-11-03
CVE-2021-35464 ForgeRock Access Management (AM) ForgeRock Access Management (AM) Core Server allows an attacker who sends a specially crafted HTTP request to one of th… CRÍTICA 2021-11-03
CVE-2019-5591 Fortinet FortiOS Fortinet FortiOS contains a default configuration vulnerability that may allow an unauthenticated attacker on the same … MEDIA 2021-11-03
CVE-2020-12812 Fortinet FortiOS Fortinet FortiOS SSL VPN contains an improper authentication vulnerability that may allow a user to login successfully … CRÍTICA 2021-11-03
CVE-2018-13379 Fortinet FortiOS Fortinet FortiOS SSL VPN web portal contains a path traversal vulnerability that may allow an unauthenticated attacker … CRÍTICA 2021-11-03
CVE-2020-16010 Google Chrome for Android UI Google Chrome for Android UI contains a heap buffer overflow vulnerability that allows a remote attacker, who has compr… CRÍTICA 2021-11-03
CVE-2020-15999 Google Chrome FreeType Google Chrome uses FreeType, an open-source software library to render fonts, which contains a heap buffer overflow vul… CRÍTICA 2021-11-03
CVE-2021-21166 Google Chromium Google Chromium contains a race condition vulnerability that allows a remote attacker to potentially exploit heap corru… ALTA 2021-11-03
← Anterior Página 54 / 62 (1545 CVEs total) Siguiente →
[INFO] El nuevo malware bancario Android de Perseus monitorea las aplicaciones de notas para extraer datos confidenciales...  ·  [INFO] El kit de exploits DarkSword para iOS utiliza 6 defectos y 3 días cero para apoderarse por completo del dispositivo...  ·  [INFO] Cómo Ceros brinda visibilidad y control a los equipos de seguridad en Claude Code...  ·  [INFO] La CISA advierte sobre las vulnerabilidades de Zimbra y SharePoint; los ataques de ransomware son un éxito de día cero para Cisco...  ·  [INFO] CVE-2026-20963: Vulnerabilidad Crítica en Microsoft SharePoint Explotada Activamente  ·  [INFO] El nuevo malware bancario Android de Perseus monitorea las aplicaciones de notas para extraer datos confidenciales...  ·  [INFO] El kit de exploits DarkSword para iOS utiliza 6 defectos y 3 días cero para apoderarse por completo del dispositivo...  ·  [INFO] Cómo Ceros brinda visibilidad y control a los equipos de seguridad en Claude Code...  ·  [INFO] La CISA advierte sobre las vulnerabilidades de Zimbra y SharePoint; los ataques de ransomware son un éxito de día cero para Cisco...  ·  [INFO] CVE-2026-20963: Vulnerabilidad Crítica en Microsoft SharePoint Explotada Activamente  ·