CIBERPLANETA_
// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

  • 🟢 BAJA — 0 CVEs nuevos en el feed reciente
  • 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
  • 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
  • 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

17
CVEs añadidos este mes
1546
Total KEV catalogados
10
Vendors afectados

// cves_añadidos_este_mes

CVE Producto Criticidad Añadido
CVE-2026-20131 Cisco Secure Firewall Management Center (FMC) CRÍTICA 2026-03-19
CVE-2025-66376 Synacor Zimbra Collaboration Suite (ZCS) ALTA 2026-03-18
CVE-2026-20963 Microsoft SharePoint ALTA 2026-03-18
CVE-2025-47813 Wing FTP Server Wing FTP Server MEDIA 2026-03-16
CVE-2026-3910 Google Chromium V8 ALTA 2026-03-13
CVE-2026-3909 Google Skia ALTA 2026-03-13
CVE-2025-68613 n8n n8n CRÍTICA 2026-03-11
CVE-2021-22054 Omnissa Workspace One UEM ALTA 2026-03-09
CVE-2025-26399 SolarWinds Web Help Desk CRÍTICA 2026-03-09
CVE-2026-1603 Ivanti Endpoint Manager (EPM) ALTA 2026-03-09

// top_vendors_afectados

Microsoft
15
Cisco
5
Google
5
Apple
5
Fortinet
4
Synacor
3
SolarWinds
3
Broadcom
3
SmarterTools
3
Gladinet
3

// catalogo_kev_completo

CVE ID Producto Descripción CVSS Añadido
CVE-2021-35211 SolarWinds Serv-U SolarWinds Serv-U contains an unspecified memory escape vulnerability which can allow for remote code execution. CRÍTICA 2021-11-03
CVE-2016-3643 SolarWinds Virtualization Manager SolarWinds Virtualization Manager allows for privilege escalation through leveraging a misconfiguration of sudo. ALTA 2021-11-03
CVE-2020-10199 Sonatype Nexus Repository Sonatype Nexus Repository contains an unspecified vulnerability that allows for remote code execution. ALTA 2021-11-03
CVE-2021-20021 SonicWall SonicWall Email Security SonicWall Email Security contains an improper privilege management vulnerability that allows an attacker to create an a… CRÍTICA 2021-11-03
CVE-2019-7481 SonicWall SMA100 SonicWall SMA100 contains a SQL injection vulnerability allowing an unauthenticated user to gain read-only access to un… ALTA 2021-11-03
CVE-2021-20022 SonicWall SonicWall Email Security SonicWall Email Security contains an unrestricted upload of file with dangerous type vulnerability that allows a post-a… ALTA 2021-11-03
CVE-2021-20023 SonicWall SonicWall Email Security SonicWall Email Security contains a path traversal vulnerability that allows a post-authenticated attacker to read file… MEDIA 2021-11-03
CVE-2021-20016 SonicWall SSLVPN SMA100 SonicWall SSLVPN SMA100 contains a SQL injection vulnerability that allows remote exploitation for credential access by… CRÍTICA 2021-11-03
CVE-2020-12271 Sophos SFOS Sophos Firewall operating system (SFOS) firmware contains a SQL injection vulnerability when configured with either the… CRÍTICA 2021-11-03
CVE-2020-10181 Sumavision Enhanced Multimedia Router (EMR) Sumavision Enhanced Multimedia Router (EMR) contains a cross-site request forgery (CSRF) vulnerability allowing the cre… CRÍTICA 2021-11-03
CVE-2017-6327 Symantec Symantec Messaging Gateway Symantec Messaging Gateway contains an unspecified vulnerability which can allow for remote code execution. With the ab… ALTA 2021-11-03
CVE-2019-18988 TeamViewer Desktop TeamViewer Desktop allows for bypass of remote-login access control because the same AES key is used for different cust… ALTA 2021-11-03
CVE-2017-9248 Progress ASP.NET AJAX and Sitefinity Progress Telerik UI for ASP.NET AJAX and Sitefinity have a cryptographic weakness in Telerik.Web.UI.dll that can be exp… CRÍTICA 2021-11-03
CVE-2021-31755 Tenda AC11 Router Tenda AC11 devices contain a stack buffer overflow vulnerability in /goform/setmac which allows attackers to execute co… CRÍTICA 2021-11-03
CVE-2020-10987 Tenda AC1900 Router AC15 Model Tenda AC1900 Router AC15 Model contains an unspecified vulnerability that allows remote attackers to execute system com… CRÍTICA 2021-11-03
CVE-2018-14558 Tenda AC7, AC9, and AC10 Routers Tenda AC7, AC9, and AC10 devices contain a command injection vulnerability due to the "formsetUsbUnload" function exec… CRÍTICA 2021-11-03
CVE-2018-20062 ThinkPHP noneCms ThinkPHP "noneCms" contains an unspecified vulnerability that allows for remote code execution through crafted use of t… CRÍTICA 2021-11-03
CVE-2019-9082 ThinkPHP ThinkPHP ThinkPHP contains an unspecified vulnerability that allows for remote code execution via public//?s=index/\think\app/in… ALTA 2021-11-03
CVE-2019-18187 Trend Micro OfficeScan Trend Micro OfficeScan contains a directory traversal vulnerability by extracting files from a zip file to a specific f… ALTA 2021-11-03
CVE-2020-8467 Trend Micro Apex One and OfficeScan Trend Micro Apex One and OfficeScan contain an unspecified vulnerability within a migration tool component that allows … ALTA 2021-11-03
CVE-2020-8468 Trend Micro Apex One, OfficeScan and Worry-Free Business Security Agents Trend Micro Apex One, OfficeScan, and Worry-Free Business Security agents contain a content validation escape vulnerabi… ALTA 2021-11-03
CVE-2020-24557 Trend Micro Apex One, OfficeScan, and Worry-Free Business Security Trend Micro Apex One, OfficeScan, and Worry-Free Business Security on Microsoft Windows contain an improper access cont… ALTA 2021-11-03
CVE-2020-8599 Trend Micro Apex One and OfficeScan Trend Micro Apex One and OfficeScan server contain a vulnerable EXE file that could allow a remote attacker to write da… CRÍTICA 2021-11-03
CVE-2021-36742 Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security contain an improper input validation vuln… ALTA 2021-11-03
CVE-2021-36741 Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security contain an improper input validation vuln… ALTA 2021-11-03
← Anterior Página 61 / 62 (1546 CVEs total) Siguiente →
[INFO] El malware Speagle secuestra Cobra DocGuard para robar datos a través de servidores comprometidos...  ·  [INFO] 54 asesinos de EDR utilizan BYOVD para explotar 34 controladores vulnerables firmados y deshabilitar la seguridad...  ·  [INFO] CVE-2026-20131: Vulnerabilidad Crítica de Deserialización en Cisco FMC y SCC  ·  [INFO] Boletín del Día de las Amenazas: RaaS de FortiGate, exploits de Citrix, abuso de MCP, suplantación de identidad de chat en vivo y ...  ·  [INFO] El nuevo malware bancario Android de Perseus monitorea las aplicaciones de notas para extraer datos confidenciales...  ·  [INFO] El malware Speagle secuestra Cobra DocGuard para robar datos a través de servidores comprometidos...  ·  [INFO] 54 asesinos de EDR utilizan BYOVD para explotar 34 controladores vulnerables firmados y deshabilitar la seguridad...  ·  [INFO] CVE-2026-20131: Vulnerabilidad Crítica de Deserialización en Cisco FMC y SCC  ·  [INFO] Boletín del Día de las Amenazas: RaaS de FortiGate, exploits de Citrix, abuso de MCP, suplantación de identidad de chat en vivo y ...  ·  [INFO] El nuevo malware bancario Android de Perseus monitorea las aplicaciones de notas para extraer datos confidenciales...  ·