CIBERPLANETA_
// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

  • 🟢 BAJA — 0 CVEs nuevos en el feed reciente
  • 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
  • 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
  • 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

1
CVEs añadidos este mes
1587
Total KEV catalogados
10
Vendors afectados

// cves_añadidos_este_mes

CVE Producto Criticidad Añadido
CVE-2026-31431 Linux Kernel ALTA 2026-05-01

// top_vendors_afectados

Microsoft
19
Cisco
7
Apple
7
Synacor
4
Google
4
Fortinet
3
Ivanti
3
SolarWinds
3
SmarterTools
3
Linux
2

// catalogo_kev_completo

CVE ID Producto Descripción CVSS Añadido
CVE-2021-1906 Qualcomm Multiple Chipsets Multiple Qualcomm chipsets contain a detection of error condition without action vulnerability when improper handling o… MEDIA 2021-11-03
CVE-2021-1905 Qualcomm Multiple Chipsets Multiple Qualcomm Chipsets contain a use after free vulnerability due to improper handling of memory mapping of multipl… ALTA 2021-11-03
CVE-2020-10221 rConfig rConfig rConfig lib/ajaxHandlers/ajaxAddTemplate.php contains an OS command injection vulnerability that allows remote attacker… ALTA 2021-11-03
CVE-2021-35395 Realtek AP-Router SDK Realtek AP-Router SDK HTTP web server boa contains a buffer overflow vulnerability due to unsafe copies of some overly … CRÍTICA 2021-11-03
CVE-2017-16651 Roundcube Roundcube Webmail Roundcube Webmail contains a file disclosure vulnerability caused by insufficient input validation in conjunction with … ALTA 2021-11-03
CVE-2020-11652 SaltStack Salt SaltStack Salt contains a path traversal vulnerability in the salt-master process ClearFuncs which allows directory acc… MEDIA 2021-11-03
CVE-2020-11651 SaltStack Salt SaltStack Salt contains an authentication bypass vulnerability in the salt-master process ClearFuncs due to improperly … CRÍTICA 2021-11-03
CVE-2020-16846 SaltStack Salt SaltStack Salt allows an unauthenticated user with network access to the Salt API to use shell injections to run code o… CRÍTICA 2021-11-03
CVE-2018-2380 SAP Customer Relationship Management (CRM) SAP Customer Relationship Management (CRM) contains a path traversal vulnerability that allows an attacker to exploit i… MEDIA 2021-11-03
CVE-2010-5326 SAP NetWeaver SAP NetWeaver Application Server Java Platforms Invoker Servlet does not require authentication, allowing for remote co… CRÍTICA 2021-11-03
CVE-2016-9563 SAP NetWeaver SAP NetWeaver Application Server Java Platforms contains an unspecified vulnerability in BC-BMT-BPM-DSK which allows re… MEDIA 2021-11-03
CVE-2020-6287 SAP NetWeaver SAP NetWeaver Application Server Java Platforms contains a missing authentication for critical function vulnerability a… CRÍTICA 2021-11-03
CVE-2020-6207 SAP Solution Manager SAP Solution Manager User Experience Monitoring contains a missing authentication for critical function vulnerability w… CRÍTICA 2021-11-03
CVE-2016-3976 SAP NetWeaver SAP NetWeaver Application Server Java Platforms contains a directory traversal vulnerability via a ..\ (dot dot backsla… ALTA 2021-11-03
CVE-2019-16256 SIMalliance Toolbox Browser SIMalliance Toolbox Browser contains an command injection vulnerability that could allow remote attackers to retrieve l… CRÍTICA 2021-11-03
CVE-2020-10148 SolarWinds Orion SolarWinds Orion API contains an authentication bypass vulnerability that could allow a remote attacker to execute API … CRÍTICA 2021-11-03
CVE-2021-35211 SolarWinds Serv-U SolarWinds Serv-U contains an unspecified memory escape vulnerability which can allow for remote code execution. CRÍTICA 2021-11-03
CVE-2016-3643 SolarWinds Virtualization Manager SolarWinds Virtualization Manager allows for privilege escalation through leveraging a misconfiguration of sudo. ALTA 2021-11-03
CVE-2020-10199 Sonatype Nexus Repository Sonatype Nexus Repository contains an unspecified vulnerability that allows for remote code execution. ALTA 2021-11-03
CVE-2021-20021 SonicWall SonicWall Email Security SonicWall Email Security contains an improper privilege management vulnerability that allows an attacker to create an a… CRÍTICA 2021-11-03
CVE-2019-7481 SonicWall SMA100 SonicWall SMA100 contains a SQL injection vulnerability allowing an unauthenticated user to gain read-only access to un… ALTA 2021-11-03
CVE-2021-20022 SonicWall SonicWall Email Security SonicWall Email Security contains an unrestricted upload of file with dangerous type vulnerability that allows a post-a… ALTA 2021-11-03
CVE-2021-20023 SonicWall SonicWall Email Security SonicWall Email Security contains a path traversal vulnerability that allows a post-authenticated attacker to read file… MEDIA 2021-11-03
CVE-2021-20016 SonicWall SSLVPN SMA100 SonicWall SSLVPN SMA100 contains a SQL injection vulnerability that allows remote exploitation for credential access by… CRÍTICA 2021-11-03
CVE-2020-12271 Sophos SFOS Sophos Firewall operating system (SFOS) firmware contains a SQL injection vulnerability when configured with either the… CRÍTICA 2021-11-03
← Anterior Página 62 / 64 (1587 CVEs total) Siguiente →
[INFO] CVE-2026-31431: Vulnerabilidad de Escalada de Privilegios en Linux Kernel  ·  [INFO] CVE-2026-41940: Vulnerabilidad Crítica de Bypass de Autenticación en cPanel & WHM y WP2  ·  [INFO] CVE-2024-1708: Path Traversal en ConnectWise ScreenConnect Explotado Activamente  ·  [INFO] CVE-2026-32202: Fallo en Mecanismo de Protección en Microsoft Windows  ·  [INFO] CVE-2024-57726: Vulnerabilidad Crítica de Autorización en SimpleHelp  ·  [INFO] CVE-2026-31431: Vulnerabilidad de Escalada de Privilegios en Linux Kernel  ·  [INFO] CVE-2026-41940: Vulnerabilidad Crítica de Bypass de Autenticación en cPanel & WHM y WP2  ·  [INFO] CVE-2024-1708: Path Traversal en ConnectWise ScreenConnect Explotado Activamente  ·  [INFO] CVE-2026-32202: Fallo en Mecanismo de Protección en Microsoft Windows  ·  [INFO] CVE-2024-57726: Vulnerabilidad Crítica de Autorización en SimpleHelp  ·