// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

▶ ¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

🟢 BAJA — 0 CVEs nuevos en el feed reciente
🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

CVEs añadidos este mes

1587

Total KEV catalogados

Vendors afectados

// cves_añadidos_este_mes

CVE	Producto	Criticidad	Añadido
CVE-2026-31431	Linux Kernel	ALTA	2026-05-01

// top_vendors_afectados

Microsoft

19

Cisco

7

Apple

7

Synacor

4

Google

4

Fortinet

3

Ivanti

3

SolarWinds

3

SmarterTools

3

Linux

2

// catalogo_kev_completo

CVE ID	Producto	Descripción	CVSS	Añadido
CVE-2020-3952	VMware vCenter Server	VMware vCenter Server contains an information disclosure vulnerability in the VMware Directory Service (vmdir) when the…	CRÍTICA	2021-11-03
CVE-2021-21972	VMware vCenter Server	VMware vCenter Server vSphere Client contains a remote code execution vulnerability in a vCenter Server plugin which al…	CRÍTICA	2021-11-03
CVE-2021-21985	VMware vCenter Server	VMware vSphere Client contains an improper input validation vulnerability in the Virtual SAN Health Check plug-in, whic…	CRÍTICA	2021-11-03
CVE-2020-4006	VMware Multiple Products	VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector contain a command injec…	CRÍTICA	2021-11-03
CVE-2020-25213	WordPress File Manager Plugin	WordPress File Manager plugin contains a remote code execution vulnerability that allows unauthenticated users to execu…	CRÍTICA	2021-11-03
CVE-2020-11738	WordPress Snap Creek Duplicator Plugin	WordPress Snap Creek Duplicator plugin contains a file download vulnerability when an administrator creates a new copy …	ALTA	2021-11-03
CVE-2019-9978	WordPress Social Warfare Plugin	WordPress Social Warfare plugin contains a cross-site scripting (XSS) vulnerability that allows for remote code executi…	MEDIA	2021-11-03
CVE-2021-27561	Yealink Device Management	Yealink Device Management contains a server-side request forgery (SSRF) vulnerability that allows for unauthenticated r…	CRÍTICA	2021-11-03
CVE-2021-40539	Zoho ManageEngine	Zoho ManageEngine ADSelfService Plus contains an authentication bypass vulnerability affecting the REST API URLs which …	CRÍTICA	2021-11-03
CVE-2020-10189	Zoho ManageEngine	Zoho ManageEngine Desktop Central contains a file upload vulnerability that allows for unauthenticated remote code exec…	CRÍTICA	2021-11-03
CVE-2019-8394	Zoho ManageEngine	Zoho ManageEngine ServiceDesk Plus (SDP) contains an unspecified vulnerability that allows remote users to upload files…	MEDIA	2021-11-03
CVE-2020-29583	Zyxel Multiple Products	Zyxel firewalls (ATP, USG, VM) and AP Controllers (NXC2500 and NXC5500) contain a use of hard-coded credentials vulnera…	CRÍTICA	2021-11-03

← Anterior Página 64 / 64 (1587 CVEs total)