CIBERPLANETA_
// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

  • 🟢 BAJA — 0 CVEs nuevos en el feed reciente
  • 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
  • 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
  • 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

17
CVEs añadidos este mes
1546
Total KEV catalogados
10
Vendors afectados

// cves_añadidos_este_mes

CVE Producto Criticidad Añadido
CVE-2026-20131 Cisco Secure Firewall Management Center (FMC) CRÍTICA 2026-03-19
CVE-2025-66376 Synacor Zimbra Collaboration Suite (ZCS) ALTA 2026-03-18
CVE-2026-20963 Microsoft SharePoint ALTA 2026-03-18
CVE-2025-47813 Wing FTP Server Wing FTP Server MEDIA 2026-03-16
CVE-2026-3910 Google Chromium V8 ALTA 2026-03-13
CVE-2026-3909 Google Skia ALTA 2026-03-13
CVE-2025-68613 n8n n8n CRÍTICA 2026-03-11
CVE-2021-22054 Omnissa Workspace One UEM ALTA 2026-03-09
CVE-2025-26399 SolarWinds Web Help Desk CRÍTICA 2026-03-09
CVE-2026-1603 Ivanti Endpoint Manager (EPM) ALTA 2026-03-09

// top_vendors_afectados

Microsoft
15
Cisco
5
Google
5
Apple
5
Fortinet
4
Synacor
3
SolarWinds
3
Broadcom
3
SmarterTools
3
Gladinet
3

// catalogo_kev_completo

CVE ID Producto Descripción CVSS Añadido
CVE-2019-0797 Microsoft Win32k Microsoft Win32k contains a privilege escalation vulnerability when the Win32k component fails to properly handle objec… ALTA 2021-11-03
CVE-2021-36942 Microsoft Windows Microsoft Windows Local Security Authority (LSA) contains a spoofing vulnerability allowing an unauthenticated attacker… ALTA 2021-11-03
CVE-2019-1215 Microsoft Windows Microsoft Windows contains an unspecified vulnerability due to the way ws2ifsl.sys (Winsock) handles objects in memory,… ALTA 2021-11-03
CVE-2018-0798 Microsoft Office Microsoft Office contains a memory corruption vulnerability due to the way objects are handled in memory. Successful ex… ALTA 2021-11-03
CVE-2018-0802 Microsoft Office Microsoft Office contains a memory corruption vulnerability due to the way objects are handled in memory. Successful ex… ALTA 2021-11-03
CVE-2012-0158 Microsoft MSCOMCTL.OCX Microsoft MSCOMCTL.OCX contains an unspecified vulnerability that allows for remote code execution, allowing an attacke… ALTA 2021-11-03
CVE-2015-1641 Microsoft Office Microsoft Office contains a memory corruption vulnerability due to failure to properly handle rich text format files in… ALTA 2021-11-03
CVE-2021-27085 Microsoft Internet Explorer Microsoft Internet Explorer contains an unspecified vulnerability that allows for remote code execution. ALTA 2021-11-03
CVE-2019-0541 Microsoft MSHTML Microsoft MSHTML engine contains an improper input validation vulnerability that allows for remote code execution vulne… ALTA 2021-11-03
CVE-2017-11882 Microsoft Office Microsoft Office contains a memory corruption vulnerability that allows remote code execution in the context of the cur… ALTA 2021-11-03
CVE-2020-0674 Microsoft Internet Explorer Microsoft Internet Explorer contains a memory corruption vulnerability due to the way the Scripting Engine handles obje… ALTA 2021-11-03
CVE-2021-27059 Microsoft Office Microsoft Office contains an unspecified vulnerability that allows for remote code execution. ALTA 2021-11-03
CVE-2019-1367 Microsoft Internet Explorer Microsoft Internet Explorer contains a memory corruption vulnerability in how the scripting engine handles objects in m… ALTA 2021-11-03
CVE-2017-0199 Microsoft Office and WordPad Microsoft Office and WordPad contain an unspecified vulnerability due to the way the applications parse specially craft… ALTA 2021-11-03
CVE-2020-1380 Microsoft Internet Explorer Microsoft Internet Explorer contains a memory corruption vulnerability which can allow for remote code execution in the… ALTA 2021-11-03
CVE-2019-1429 Microsoft Internet Explorer Microsoft Internet Explorer contains a memory corruption vulnerability which can allow for remote code execution in the… ALTA 2021-11-03
CVE-2017-11774 Microsoft Office Microsoft Office Outlook contains a security feature bypass vulnerability due to improperly handling objects in memory.… ALTA 2021-11-03
CVE-2020-0968 Microsoft Internet Explorer Microsoft Internet Explorer contains a memory corruption vulnerability due to how the Scripting Engine handles objects … ALTA 2021-11-03
CVE-2020-1472 Microsoft Netlogon Microsoft's Netlogon Remote Protocol (MS-NRPC) contains a privilege escalation vulnerability when an attacker establish… MEDIA 2021-11-03
CVE-2021-26855 Microsoft Exchange Server Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerabili… CRÍTICA 2021-11-03
CVE-2021-26858 Microsoft Exchange Server Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerabili… ALTA 2021-11-03
CVE-2021-27065 Microsoft Exchange Server Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerabili… ALTA 2021-11-03
CVE-2020-1054 Microsoft Win32k Microsoft Win32k contains a privilege escalation vulnerability when the Windows kernel-mode driver fails to properly ha… ALTA 2021-11-03
CVE-2021-1675 Microsoft Windows Microsoft Windows Print Spooler contains an unspecified vulnerability that allows for remote code execution. ALTA 2021-11-03
CVE-2021-34448 Microsoft Windows Microsoft Windows Scripting Engine contains an unspecified vulnerability that allows for memory corruption. MEDIA 2021-11-03
← Anterior Página 58 / 62 (1546 CVEs total) Siguiente →
[INFO] 54 asesinos de EDR utilizan BYOVD para explotar 34 controladores vulnerables firmados y deshabilitar la seguridad...  ·  [INFO] CVE-2026-20131: Vulnerabilidad Crítica de Deserialización en Cisco FMC y SCC  ·  [INFO] Boletín del Día de las Amenazas: RaaS de FortiGate, exploits de Citrix, abuso de MCP, suplantación de identidad de chat en vivo y ...  ·  [INFO] El nuevo malware bancario Android de Perseus monitorea las aplicaciones de notas para extraer datos confidenciales...  ·  [INFO] El kit de exploits DarkSword para iOS utiliza 6 defectos y 3 días cero para apoderarse por completo del dispositivo...  ·  [INFO] 54 asesinos de EDR utilizan BYOVD para explotar 34 controladores vulnerables firmados y deshabilitar la seguridad...  ·  [INFO] CVE-2026-20131: Vulnerabilidad Crítica de Deserialización en Cisco FMC y SCC  ·  [INFO] Boletín del Día de las Amenazas: RaaS de FortiGate, exploits de Citrix, abuso de MCP, suplantación de identidad de chat en vivo y ...  ·  [INFO] El nuevo malware bancario Android de Perseus monitorea las aplicaciones de notas para extraer datos confidenciales...  ·  [INFO] El kit de exploits DarkSword para iOS utiliza 6 defectos y 3 días cero para apoderarse por completo del dispositivo...  ·