// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

▶ ¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

🟢 BAJA — 0 CVEs nuevos en el feed reciente
🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

CVEs añadidos este mes

1542

Total KEV catalogados

Vendors afectados

// cves_añadidos_este_mes

CVE	Producto	Criticidad	Añadido
CVE-2026-3910	Google Chromium V8	ALTA	2026-03-13
CVE-2026-3909	Google Skia	ALTA	2026-03-13
CVE-2025-68613	n8n n8n	CRÍTICA	2026-03-11
CVE-2021-22054	Omnissa Workspace One UEM	ALTA	2026-03-09
CVE-2025-26399	SolarWinds Web Help Desk	CRÍTICA	2026-03-09
CVE-2026-1603	Ivanti Endpoint Manager (EPM)	ALTA	2026-03-09
CVE-2017-7921	Hikvision Multiple Products	CRÍTICA	2026-03-05
CVE-2021-22681	Rockwell Multiple Products	CRÍTICA	2026-03-05
CVE-2023-43000	Apple Multiple Products	ALTA	2026-03-05
CVE-2021-30952	Apple Multiple Products	ALTA	2026-03-05

// top_vendors_afectados

Microsoft

15

Apple

6

Google

5

Cisco

4

Fortinet

4

SolarWinds

3

Broadcom

3

SmarterTools

3

Gladinet

3

Ivanti

2

// catalogo_kev_completo

CVE ID	Producto	Descripción	CVSS	Añadido
CVE-2025-20362	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense	Cisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Software VPN Web Serve…	MEDIA	2025-09-25
CVE-2025-20333	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense	Cisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Software VPN Web Serve…	CRÍTICA	2025-09-25
CVE-2025-10585	Google Chromium V8	Google Chromium contains a type confusion vulnerability in the V8 JavaScript and WebAssembly engine.	CRÍTICA	2025-09-23
CVE-2025-5086	Dassault Systèmes DELMIA Apriso	Dassault Systèmes DELMIA Apriso contains a deserialization of untrusted data vulnerability that could lead to a remote …	CRÍTICA	2025-09-11
CVE-2025-38352	Linux Kernel	Linux kernel contains a time-of-check time-of-use (TOCTOU) race condition vulnerability that has a high impact on confi…	ALTA	2025-09-04
CVE-2025-48543	Android Runtime	Android Runtime contains a use-after-free vulnerability potentially allowing a chrome sandbox escape leading to local p…	ALTA	2025-09-04
CVE-2025-53690	Sitecore Multiple Products	Sitecore Experience Manager (XM), Experience Platform (XP), Experience Commerce (XC), and Managed Cloud contain a deser…	CRÍTICA	2025-09-04
CVE-2023-50224	TP-Link TL-WR841N	TP-Link TL-WR841N contains an authentication bypass by spoofing vulnerability within the httpd service, which listens o…	MEDIA	2025-09-03
CVE-2025-9377	TP-Link Multiple Routers	TP-Link Archer C7(EU) and TL-WR841N/ND(MS) contain an OS command injection vulnerability that exists in the Parental Co…	ALTA	2025-09-03
CVE-2020-24363	TP-Link TL-WA855RE	TP-link TL-WA855RE contains a missing authentication for critical function vulnerability. This vulnerability could allo…	ALTA	2025-09-02
CVE-2025-55177	Meta Platforms WhatsApp	Meta Platforms WhatsApp contains an incorrect authorization vulnerability due to an incomplete authorization of linked …	MEDIA	2025-09-02
CVE-2025-57819	Sangoma FreePBX	Sangoma FreePBX contains an authentication bypass vulnerability due to insufficiently sanitized user-supplied data allo…	CRÍTICA	2025-08-29
CVE-2025-7775	Citrix NetScaler	Citrix NetScaler ADC and NetScaler Gateway contain a memory overflow vulnerability that could allow for remote code exe…	CRÍTICA	2025-08-26
CVE-2025-48384	Git Git	Git contains a link following vulnerability that stems from Git’s inconsistent handling of carriage return characters i…	ALTA	2025-08-25
CVE-2024-8068	Citrix Session Recording	Citrix Session Recording contains an improper privilege management vulnerability that could allow for privilege escalat…	ALTA	2025-08-25
CVE-2024-8069	Citrix Session Recording	Citrix Session Recording contains a deserialization of untrusted data vulnerability that allows limited remote code exe…	ALTA	2025-08-25
CVE-2025-43300	Apple iOS, iPadOS, and macOS	Apple iOS, iPadOS, and macOS contain an out-of-bounds write vulnerability in the Image I/O framework.	CRÍTICA	2025-08-21
CVE-2025-54948	Trend Micro Apex One	Trend Micro Apex One Management Console (on-premise) contains an OS command injection vulnerability that could allow a …	CRÍTICA	2025-08-18
CVE-2025-8876	N-able N-Central	N-able N-Central contains a command injection vulnerability via improper sanitization of user input.	ALTA	2025-08-13
CVE-2025-8875	N-able N-Central	N-able N-Central contains an insecure deserialization vulnerability that could lead to command execution.	ALTA	2025-08-13
CVE-2025-8088	RARLAB WinRAR	RARLAB WinRAR contains a path traversal vulnerability affecting the Windows version of WinRAR. This vulnerability could…	ALTA	2025-08-12
CVE-2007-0671	Microsoft Office	Microsoft Office Excel contains a remote code execution vulnerability that can be exploited when a specially crafted Ex…	ALTA	2025-08-12
CVE-2013-3893	Microsoft Internet Explorer	Microsoft Internet Explorer contains a memory corruption vulnerability that allows for remote code execution. The impac…	ALTA	2025-08-12
CVE-2020-25078	D-Link DCS-2530L and DCS-2670L Devices	D-Link DCS-2530L and DCS-2670L devices contains an unspecified vulnerability that could allow for remote administrator …	ALTA	2025-08-05
CVE-2020-25079	D-Link DCS-2530L and DCS-2670L Devices	D-Link DCS-2530L and DCS-2670L devices contains a command injection vulnerability in the cgi-bin/ddns_enc.cgi. The impa…	ALTA	2025-08-05

← Anterior Página 6 / 62 (1542 CVEs total) Siguiente →