// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

▶ ¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

🟢 BAJA — 0 CVEs nuevos en el feed reciente
🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

CVEs añadidos este mes

1587

Total KEV catalogados

Vendors afectados

// cves_añadidos_este_mes

CVE	Producto	Criticidad	Añadido
CVE-2026-31431	Linux Kernel	ALTA	2026-05-01

// top_vendors_afectados

Microsoft

19

Cisco

7

Apple

7

Synacor

4

Google

4

Fortinet

3

Ivanti

3

SolarWinds

3

SmarterTools

3

Linux

2

// catalogo_kev_completo

CVE ID	Producto	Descripción	CVSS	Añadido
CVE-2021-30551	Google Chromium V8	Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit …	ALTA	2021-11-03
CVE-2021-37975	Google Chromium V8	Google Chromium V8 Engine contains a use-after-free vulnerability that allows a remote attacker to potentially exploit …	ALTA	2021-11-03
CVE-2020-6418	Google Chromium V8	Google Chromium V8 Engine contains a type confusion vulnerability allows a remote attacker to potentially exploit heap …	ALTA	2021-11-03
CVE-2021-30554	Google Chromium WebGL	Google Chromium WebGL contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap…	ALTA	2021-11-03
CVE-2021-21206	Google Chromium Blink	Google Chromium Blink contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap…	ALTA	2021-11-03
CVE-2021-38000	Google Chromium Intents	Google Chromium Intents contains an improper input validation vulnerability that allows a remote attacker to arbitraril…	MEDIA	2021-11-03
CVE-2021-38003	Google Chromium V8	Google Chromium V8 Engine has a bug in JSON.stringify, where the internal TheHole value can leak to script code, causin…	ALTA	2021-11-03
CVE-2021-21224	Google Chromium V8	Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to execute code inside …	ALTA	2021-11-03
CVE-2021-21193	Google Chromium Blink	Google Chromium Blink contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap…	ALTA	2021-11-03
CVE-2021-21220	Google Chromium V8	Google Chromium V8 Engine contains an improper input validation vulnerability that allows a remote attacker to potentia…	ALTA	2021-11-03
CVE-2021-30563	Google Chromium V8	Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit …	ALTA	2021-11-03
CVE-2020-4430	IBM Data Risk Manager	IBM Data Risk Manager contains a directory traversal vulnerability that could allow a remote authenticated attacker to …	MEDIA	2021-11-03
CVE-2020-4427	IBM Data Risk Manager	IBM Data Risk Manager contains a security bypass vulnerability that could allow a remote attacker to bypass security re…	CRÍTICA	2021-11-03
CVE-2020-4428	IBM Data Risk Manager	IBM Data Risk Manager contains an unspecified vulnerability which could allow a remote, authenticated attacker to execu…	CRÍTICA	2021-11-03
CVE-2019-4716	IBM Planning Analytics	IBM Planning Analytics is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admi…	CRÍTICA	2021-11-03
CVE-2016-3715	ImageMagick ImageMagick	ImageMagick contains an unspecified vulnerability that could allow users to delete files by using ImageMagick's 'epheme…	MEDIA	2021-11-03
CVE-2016-3718	ImageMagick ImageMagick	ImageMagick contains an unspecified vulnerability that allows attackers to perform server-side request forgery (SSRF) v…	MEDIA	2021-11-03
CVE-2020-15505	Ivanti MobileIron Multiple Products	Ivanti MobileIron's Core & Connector, Sentry, and Monitor and Reporting Database (RDB) products contain an unspecified …	CRÍTICA	2021-11-03
CVE-2021-30116	Kaseya Virtual System/Server Administrator (VSA)	Kaseya Virtual System/Server Administrator (VSA) contains an information disclosure vulnerability allowing an attacker …	CRÍTICA	2021-11-03
CVE-2020-7961	Liferay Liferay Portal	Liferay Portal contains a deserialization of untrusted data vulnerability that allows remote attackers to execute code …	CRÍTICA	2021-11-03
CVE-2021-23874	McAfee McAfee Total Protection (MTP)	McAfee Total Protection (MTP) contains an improper privilege management vulnerability that allows a local user to gain …	ALTA	2021-11-03
CVE-2021-22506	Micro Focus Micro Focus Access Manager	Micro Focus Access Manager contains an information leakage vulnerability resulting from a SAML service provider redirec…	ALTA	2021-11-03
CVE-2021-22502	Micro Focus Operation Bridge Reporter (OBR)	Micro Focus Operation Bridge Report (OBR) contains an unspecified vulnerability that allows for remote code execution.	CRÍTICA	2021-11-03
CVE-2014-1812	Microsoft Windows	Microsoft Windows Active Directory contains a privilege escalation vulnerability due to the way it distributes password…	ALTA	2021-11-03
CVE-2021-38647	Microsoft Open Management Infrastructure (OMI)	Microsoft Open Management Infrastructure (OMI) within Azure VM Management Extensions contains an unspecified vulnerabil…	CRÍTICA	2021-11-03

← Anterior Página 57 / 64 (1587 CVEs total) Siguiente →