CIBERPLANETA_
// threat_intelligence_dashboard

Dashboard de Amenazas

Vulnerabilidades activamente explotadas según el catálogo CISA KEV (Known Exploited Vulnerabilities)

¿Cómo se calcula el nivel de amenaza global?

El nivel de amenaza global mostrado en la barra de navegación se calcula en base al número de CVEs activamente explotados publicados en el catálogo CISA KEV (Known Exploited Vulnerabilities) durante las últimas horas:

  • 🟢 BAJA — 0 CVEs nuevos en el feed reciente
  • 🟡 MEDIA — 1 a 2 CVEs nuevos activamente explotados
  • 🟠 ALTA — 3 a 4 CVEs nuevos activamente explotados
  • 🔴 CRÍTICA — 5 o más CVEs nuevos activamente explotados

Fuente: CISA Known Exploited Vulnerabilities Catalog — actualizado cada hora.

1
CVEs añadidos este mes
1587
Total KEV catalogados
10
Vendors afectados

// cves_añadidos_este_mes

CVE Producto Criticidad Añadido
CVE-2026-31431 Linux Kernel ALTA 2026-05-01

// top_vendors_afectados

Microsoft
19
Cisco
7
Apple
7
Synacor
4
Google
4
Fortinet
3
Ivanti
3
SolarWinds
3
SmarterTools
3
Linux
2

// catalogo_kev_completo

CVE ID Producto Descripción CVSS Añadido
CVE-2025-48543 Android Runtime Android Runtime contains a use-after-free vulnerability potentially allowing a chrome sandbox escape leading to local p… ALTA 2025-09-04
CVE-2025-53690 Sitecore Multiple Products Sitecore Experience Manager (XM), Experience Platform (XP), Experience Commerce (XC), and Managed Cloud contain a deser… CRÍTICA 2025-09-04
CVE-2023-50224 TP-Link TL-WR841N TP-Link TL-WR841N contains an authentication bypass by spoofing vulnerability within the httpd service, which listens o… MEDIA 2025-09-03
CVE-2025-9377 TP-Link Multiple Routers TP-Link Archer C7(EU) and TL-WR841N/ND(MS) contain an OS command injection vulnerability that exists in the Parental Co… ALTA 2025-09-03
CVE-2020-24363 TP-Link TL-WA855RE TP-link TL-WA855RE contains a missing authentication for critical function vulnerability. This vulnerability could allo… ALTA 2025-09-02
CVE-2025-55177 Meta Platforms WhatsApp Meta Platforms WhatsApp contains an incorrect authorization vulnerability due to an incomplete authorization of linked … MEDIA 2025-09-02
CVE-2025-57819 Sangoma FreePBX Sangoma FreePBX contains an authentication bypass vulnerability due to insufficiently sanitized user-supplied data allo… CRÍTICA 2025-08-29
CVE-2025-7775 Citrix NetScaler Citrix NetScaler ADC and NetScaler Gateway contain a memory overflow vulnerability that could allow for remote code exe… CRÍTICA 2025-08-26
CVE-2025-48384 Git Git Git contains a link following vulnerability that stems from Git’s inconsistent handling of carriage return characters i… ALTA 2025-08-25
CVE-2024-8068 Citrix Session Recording Citrix Session Recording contains an improper privilege management vulnerability that could allow for privilege escalat… ALTA 2025-08-25
CVE-2024-8069 Citrix Session Recording Citrix Session Recording contains a deserialization of untrusted data vulnerability that allows limited remote code exe… ALTA 2025-08-25
CVE-2025-43300 Apple iOS, iPadOS, and macOS Apple iOS, iPadOS, and macOS contain an out-of-bounds write vulnerability in the Image I/O framework. CRÍTICA 2025-08-21
CVE-2025-54948 Trend Micro Apex One Trend Micro Apex One Management Console (on-premise) contains an OS command injection vulnerability that could allow a … CRÍTICA 2025-08-18
CVE-2025-8876 N-able N-Central N-able N-Central contains a command injection vulnerability via improper sanitization of user input. ALTA 2025-08-13
CVE-2025-8875 N-able N-Central N-able N-Central contains an insecure deserialization vulnerability that could lead to command execution. ALTA 2025-08-13
CVE-2025-8088 RARLAB WinRAR RARLAB WinRAR contains a path traversal vulnerability affecting the Windows version of WinRAR. This vulnerability could… ALTA 2025-08-12
CVE-2007-0671 Microsoft Office Microsoft Office Excel contains a remote code execution vulnerability that can be exploited when a specially crafted Ex… ALTA 2025-08-12
CVE-2013-3893 Microsoft Internet Explorer Microsoft Internet Explorer contains a memory corruption vulnerability that allows for remote code execution. The impac… ALTA 2025-08-12
CVE-2020-25078 D-Link DCS-2530L and DCS-2670L Devices D-Link DCS-2530L and DCS-2670L devices contains an unspecified vulnerability that could allow for remote administrator … ALTA 2025-08-05
CVE-2020-25079 D-Link DCS-2530L and DCS-2670L Devices D-Link DCS-2530L and DCS-2670L devices contains a command injection vulnerability in the cgi-bin/ddns_enc.cgi. The impa… ALTA 2025-08-05
CVE-2022-40799 D-Link DNR-322L D-Link DNR-322L contains a download of code without integrity check vulnerability that could allow an authenticated att… ALTA 2025-08-05
CVE-2023-2533 PaperCut NG/MF PaperCut NG/MF contains a cross-site request forgery (CSRF) vulnerability, which, under specific conditions, could pote… ALTA 2025-07-28
CVE-2025-20337 Cisco Identity Services Engine Cisco Identity Services Engine contains an injection vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC due… CRÍTICA 2025-07-28
CVE-2025-20281 Cisco Identity Services Engine Cisco Identity Services Engine contains an injection vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC due… CRÍTICA 2025-07-28
CVE-2025-2775 SysAid SysAid On-Prem SysAid On-Prem contains an improper restriction of XML external entity reference vulnerability in the Checkin processin… CRÍTICA 2025-07-22
← Anterior Página 8 / 64 (1587 CVEs total) Siguiente →
[INFO] CVE-2026-31431: Vulnerabilidad de Escalada de Privilegios en Linux Kernel  ·  [INFO] CVE-2026-41940: Vulnerabilidad Crítica de Bypass de Autenticación en cPanel & WHM y WP2  ·  [INFO] CVE-2024-1708: Path Traversal en ConnectWise ScreenConnect Explotado Activamente  ·  [INFO] CVE-2026-32202: Fallo en Mecanismo de Protección en Microsoft Windows  ·  [INFO] CVE-2024-57726: Vulnerabilidad Crítica de Autorización en SimpleHelp  ·  [INFO] CVE-2026-31431: Vulnerabilidad de Escalada de Privilegios en Linux Kernel  ·  [INFO] CVE-2026-41940: Vulnerabilidad Crítica de Bypass de Autenticación en cPanel & WHM y WP2  ·  [INFO] CVE-2024-1708: Path Traversal en ConnectWise ScreenConnect Explotado Activamente  ·  [INFO] CVE-2026-32202: Fallo en Mecanismo de Protección en Microsoft Windows  ·  [INFO] CVE-2024-57726: Vulnerabilidad Crítica de Autorización en SimpleHelp  ·