// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

▶ ¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

🟢 BAJA — 0 CVEs nuevos en el feed reciente
🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

CVEs añadidos este mes

1587

Total KEV catalogados

Vendors afectados

// cves_añadidos_este_mes

CVE	Producto	Criticidad	Añadido
CVE-2026-31431	Linux Kernel	ALTA	2026-05-01

// top_vendors_afectados

Microsoft

19

Cisco

7

Apple

7

Synacor

4

Google

4

Fortinet

3

Ivanti

3

SolarWinds

3

SmarterTools

3

Linux

2

// catalogo_kev_completo

CVE ID	Producto	Descripción	CVSS	Añadido
CVE-2017-9822	DotNetNuke (DNN) DotNetNuke (DNN)	DotNetNuke (DNN) contains a vulnerability that may allow for remote code execution via cookie deserialization.	ALTA	2021-11-03
CVE-2019-15752	Docker Desktop Community Edition	Docker Desktop Community Edition contains a vulnerability that may allow local users to escalate privileges by placing …	ALTA	2021-11-03
CVE-2020-8515	DrayTek Multiple Vigor Routers	DrayTek Vigor3900, Vigor2960, and Vigor300B routers contain an unspecified vulnerability that allows for remote code ex…	CRÍTICA	2021-11-03
CVE-2018-7600	Drupal Drupal Core	Drupal Core contains a remote code execution vulnerability that could allow an attacker to exploit multiple attack vect…	CRÍTICA	2021-11-03
CVE-2021-22205	GitLab Community and Enterprise Editions	GitHub Community and Enterprise Editions that utilize the ability to upload images through GitLab Workhorse are vulnera…	CRÍTICA	2021-11-03
CVE-2018-6789	Exim Exim	Exim contains a buffer overflow vulnerability in the base64d function part of the SMTP listener that may allow for remo…	CRÍTICA	2021-11-03
CVE-2020-8657	EyesOfNetwork EyesOfNetwork	EyesOfNetwork contains a use of hard-coded credentials vulnerability, as it uses the same API key by default. Exploitat…	CRÍTICA	2021-11-03
CVE-2020-8655	EyesOfNetwork EyesOfNetwork	EyesOfNetwork contains an improper privilege management vulnerability that may allow a user to run commands as root via…	ALTA	2021-11-03
CVE-2020-5902	F5 BIG-IP	F5 BIG-IP Traffic Management User Interface (TMUI) contains a remote code execution vulnerability in undisclosed pages.	CRÍTICA	2021-11-03
CVE-2021-22986	F5 BIG-IP and BIG-IQ Centralized Management	F5 BIG-IP and BIG-IQ Centralized Management contain a remote code execution vulnerability in the iControl REST interfac…	CRÍTICA	2021-11-03
CVE-2021-35464	ForgeRock Access Management (AM)	ForgeRock Access Management (AM) Core Server allows an attacker who sends a specially crafted HTTP request to one of th…	CRÍTICA	2021-11-03
CVE-2019-5591	Fortinet FortiOS	Fortinet FortiOS contains a default configuration vulnerability that may allow an unauthenticated attacker on the same …	MEDIA	2021-11-03
CVE-2020-12812	Fortinet FortiOS	Fortinet FortiOS SSL VPN contains an improper authentication vulnerability that may allow a user to login successfully …	CRÍTICA	2021-11-03
CVE-2018-13379	Fortinet FortiOS	Fortinet FortiOS SSL VPN web portal contains a path traversal vulnerability that may allow an unauthenticated attacker …	CRÍTICA	2021-11-03
CVE-2020-16010	Google Chrome for Android UI	Google Chrome for Android UI contains a heap buffer overflow vulnerability that allows a remote attacker, who has compr…	CRÍTICA	2021-11-03
CVE-2020-15999	Google Chrome FreeType	Google Chrome uses FreeType, an open-source software library to render fonts, which contains a heap buffer overflow vul…	CRÍTICA	2021-11-03
CVE-2021-21166	Google Chromium	Google Chromium contains a race condition vulnerability that allows a remote attacker to potentially exploit heap corru…	ALTA	2021-11-03
CVE-2020-16017	Google Chrome	Google Chrome contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer p…	CRÍTICA	2021-11-03
CVE-2021-37976	Google Chromium	Google Chromium contains an information disclosure vulnerability within the core memory component that allows a remote …	MEDIA	2021-11-03
CVE-2020-16009	Google Chromium V8	Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit …	ALTA	2021-11-03
CVE-2021-30632	Google Chromium V8	Google Chromium V8 Engine contains an out-of-bounds write vulnerability that allows a remote attacker to potentially ex…	ALTA	2021-11-03
CVE-2020-16013	Google Chromium V8	Google Chromium V8 Engine contains an inappropriate implementation vulnerability that allows a remote attacker to poten…	ALTA	2021-11-03
CVE-2021-30633	Google Chromium Indexed DB API	Google Chromium Indexed DB API contains a use-after-free vulnerability that allows a remote attacker, who has compromis…	CRÍTICA	2021-11-03
CVE-2021-21148	Google Chromium V8	Google Chromium V8 Engine contains a heap buffer overflow vulnerability that allows a remote attacker to potentially ex…	ALTA	2021-11-03
CVE-2021-37973	Google Chromium Portals	Google Chromium Portals contains a use-after-free vulnerability that allows a remote attacker, who has compromised the …	CRÍTICA	2021-11-03

← Anterior Página 56 / 64 (1587 CVEs total) Siguiente →