Top 50 Vulnerabilidades
Una CVE es una falla de seguridad conocida. Esta vista muestra cuáles aparecen con más frecuencia en la superficie paraguaya observada por Shodan.
Proveedores de Internet
Muestra qué redes alojan más dispositivos con vulnerabilidades conocidas visibles desde internet.
| Proveedor | Dispositivos Conectados |
|---|---|
| Núcleo S.A. | 2,006 |
| Telecel S.A. | 1,617 |
| MONGELOS ARCE MARCIAL(DELTA NETWORKS) | 650 |
| TV 2 S.A. | 597 |
| Telecom Argentina S.A. | 556 |
| COMPAÑIA PARAGUAYA DE COMUNICACIONES S.A. (COPACO S.A.) | 345 |
| TEMPUS GROUP S.A. | 292 |
| TECNOLOGIA EN ELECTRONICA E INFORMATICA SOCIEDAD ANONIMA (T.E.I.S.A) | 289 |
| INTERNET & MEDIA S.A. | 279 |
| GIG@NET SOCIEDAD ANONIMA | 216 |
| Techtel LMDS Comunicaciones Interactivas S.A. | 205 |
| SOL TELECOMUNICACIONES S.A. | 200 |
| Centro Nacional de Computacion | 171 |
| FRANCISCO DARIO DAVID GARCIA AYALA (NETCON) | 166 |
| STARTELECOM S.A. | 114 |
| SANCHEZ ANIBAL RAMON (ARSOFT INTERNET) | 85 |
| E-life Paraguay S.A. | 84 |
| RED PARAGUAYA DE TELECOMUNICACIONES SA | 83 |
| Netvision S.A. | 55 |
| Secretaria Nacional de Tecnologias de la Información y Comunicaciones | 55 |
| DOUGLAS BIONDO BOSCHETTI(TECNOPAGE) | 46 |
| Masternet Telecomunicaciones | 31 |
| PLANET S.A. | 31 |
| CHACO COMUNICACIONES S.A. | 30 |
| UFINET PANAMA S.A. | 30 |
| PANDA CONECT S.A. | 27 |
| FULL TELECOMUNICACIONES S.A | 26 |
| ITATEC SOCIEDAD ANONIMA | 26 |
| Douglas Back Pavan (SI NET) | 25 |
| WIND NET S.A. | 23 |
| PRIETO TELLES ALEXANDRE(F1NET TELECOM PY) | 22 |
| Saldivar Sosa Rodrigo Agustin (RAYNET) | 22 |
| Cable Television Satelital SRL | 21 |
| HINET E.A.S. UNIPERSONAL | 21 |
| MACHADO BAEZ, NERY JAVIER (LOCAL NET PARAGUAY) | 20 |
| Leonir Remussi (KDMNET) | 19 |
| DAHMER MARIANO ROBERTO ADRIANO | 18 |
| MSW S.A. | 18 |
| HERNAN GALEANO KIM (HERKIM - SOLUCIONES TECNOLOGICAS) | 17 |
| FLYTEC TELECOM SOCIEDAD ANONIMA | 16 |
| MULTI LINK S.A. | 15 |
| VIVE TELECOM S.A. | 15 |
| Direccion Nacional de Contrataciones Publicas | 14 |
| FLYNET SRL | 13 |
| PERES RAMOS WILLIAN (GIGABIT INTERNET) | 13 |
| ACAS TECNOLOGÍAS S.A. | 12 |
| Liz Carolina Zavala Martinez (Link Telecomunicaciones) | 12 |
| TV MAX CABLE S.A. | 11 |
| Vicente Sosa Peralta | 10 |
| GRUPO SPEED NET SOCIEDAD ANONIMA | 9 |
Ciudades
Ayuda a identificar dónde se agrupa la exposición sin convertir el informe en una lista de objetivos.
| Ciudad | Dispositivos Conectados |
|---|---|
| Asunción | 4,502 |
| Pedro Juan Caballero | 711 |
| Ciudad del Este | 656 |
| Los Cedrales | 599 |
| San Lorenzo | 311 |
| Katueté | 305 |
| Villarrica | 298 |
| Santa Rita | 245 |
| Concepción | 204 |
| Fernando de la Mora | 109 |
| Mariano Roque Alonso | 83 |
| Capiatá | 78 |
| Lima | 61 |
| Presidente Franco | 49 |
| Limpio | 43 |
| Salto del Guairá | 42 |
| Caaguazú | 37 |
| Colonia General Alfredo Stroessner | 34 |
| Ayolas | 33 |
| Caacupé | 33 |
| Colonia Menno | 32 |
| San Alberto | 32 |
| Nueva Esperanza | 31 |
| Lambaré | 25 |
| Obligado | 21 |
| San Antonio | 21 |
| Itauguá | 18 |
| Coronel Oviedo | 13 |
| Yby Yaú | 13 |
| Veinticinco de Diciembre | 12 |
| Guarambaré | 10 |
| Encarnación | 9 |
| La Paloma del Espíritu Santo | 9 |
| Carapeguá | 8 |
| Filadelfia | 8 |
| Puerto Mayor Otaño | 7 |
| Nemby | 6 |
| Hohenau | 5 |
| Caraguatay | 4 |
| Colonia Mauricio José Troche | 4 |
| Repatriación | 4 |
| San Cosme y Damián | 4 |
| Atyrá | 3 |
| Horqueta | 3 |
| Nueva Londres | 3 |
| Villa Oliva | 3 |
| Ypacarai | 3 |
| Arroyos y Esteros | 2 |
| Caapucú | 2 |
| Cambyretá | 2 |
Productos
Dispositivos y programas específicos detectados en sistemas vulnerables: routers, servidores, cámaras, paneles y servicios.
| Producto | Instancias |
|---|---|
| MySQL | 2,197 |
| Apache httpd | 2,195 |
| nginx | 1,238 |
| OpenSSH | 547 |
| lighttpd | 413 |
| MikroTik Winbox | 271 |
| Ubiquiti AirRouter | 204 |
| ntpd | 133 |
| Microsoft IIS httpd | 117 |
| uc-httpd | 81 |
| Jetty | 27 |
| Squid http proxy | 24 |
| OpenResty | 20 |
| Exim smtpd | 17 |
| Apache Tomcat | 14 |
| pfSense pfSense | 14 |
| Remote Desktop Protocol | 12 |
| PostgreSQL | 11 |
| Portainer | 10 |
| Control Web Panel (CWP) | 8 |
| Grafana (Open Source) | 8 |
| MongoDB | 8 |
| Jenkins | 5 |
| Nextcloud | 5 |
| RabbitMQ | 5 |
| ciscoSystems | 4 |
| ownCloud | 4 |
| Grafana (Enterprise) | 3 |
| Outlook Web App | 3 |
| Plex Media Server | 3 |
| ProFTPD | 3 |
| WEBrick httpd | 3 |
| Werkzeug httpd | 3 |
| WildFly | 3 |
| mini_httpd | 3 |
| n8n | 3 |
| CUPS (IPP) | 2 |
| Cacti | 2 |
| Metabase | 2 |
| MinIO Server | 2 |
| Wowza Streaming Engine | 2 |
| D-Link DCS-5010L webcam http interface | 1 |
| D-Link DCS-933L webcam http interface | 1 |
| Jellyfin | 1 |
| Microsoft RPC | 1 |
| Mosquitto | 1 |
| Netdata | 1 |
| Ollama | 1 |
| Oracle Application Server 10g httpd | 1 |
| Oracle GlassFish | 1 |
Sistemas Operativos
Versiones antiguas o sin soporte suelen indicar dispositivos que necesitan mantenimiento, reemplazo o aislamiento.
| Sistema Operativo | Instancias |
|---|---|
| Ubuntu | 842 |
| Ubiquiti AirOS | 204 |
| Windows | 120 |
| MikroTik RouterOS 6.47 | 70 |
| MikroTik RouterOS 6.49.13 | 41 |
| MikroTik RouterOS 6.49.18 | 32 |
| MikroTik RouterOS 6.48.7 | 19 |
| MikroTik RouterOS 6.49.7 | 18 |
| FreeBSD | 14 |
| MikroTik RouterOS 6.47.10 | 14 |
| MikroTik RouterOS 6.47.9 | 14 |
| FreeBSD 12.3-STABLE (amd64) | 11 |
| Linux | 8 |
| MikroTik RouterOS 6.47.1 | 6 |
| MikroTik RouterOS 6.18 | 5 |
| MikroTik RouterOS 6.46.1 | 4 |
| Windows 10 Pro 19045 | 4 |
| Windows Server 2008 R2 Enterprise | 4 |
| MikroTik RouterOS 6.42.6 | 3 |
| MikroTik RouterOS 6.42.7 | 3 |
| MikroTik RouterOS 6.43.2 | 3 |
| MikroTik RouterOS 6.44.5 | 3 |
| MikroTik RouterOS 6.45.1 | 3 |
| MikroTik RouterOS 6.46.5 | 3 |
| MikroTik RouterOS 6.46.6 | 3 |
| Unix | 3 |
| Windows (build 6.1.7601) | 3 |
| FreeBSD 11.2-RELEASE-p10 (amd64) | 2 |
| MikroTik RouterOS 6.43.8 | 2 |
| MikroTik RouterOS 6.44.3 | 2 |
| MikroTik RouterOS 6.46.2 | 2 |
| MikroTik RouterOS 6.46.3 | 2 |
| MikroTik RouterOS 6.46.4 | 2 |
| MikroTik RouterOS 6.47.2 | 2 |
| MikroTik RouterOS 6.47.3 | 2 |
| Windows 7 Professional | 2 |
| Cisco IOS XE 16.9.4 | 1 |
| Cisco IOS XE 16.9.5 | 1 |
| Cisco IOS XE 17.6.5 | 1 |
| FreeBSD 10.1-RELEASE-p6 (amd64) | 1 |
| IOS 16.9.4 | 1 |
| MikroTik RouterOS 5.26 | 1 |
| MikroTik RouterOS 6.15 | 1 |
| MikroTik RouterOS 6.41.3 | 1 |
| MikroTik RouterOS 6.42.12 | 1 |
| MikroTik RouterOS 6.42.9 | 1 |
| MikroTik RouterOS 6.43.12 | 1 |
| MikroTik RouterOS 6.43.13 | 1 |
| MikroTik RouterOS 6.43.4 | 1 |
| MikroTik RouterOS 6.44.1 | 1 |
Puertos expuestos
Los puertos revelan qué servicios están publicados. Cada puerto abierto debería tener una razón, controles y monitoreo.
| Puerto | Detecciones |
|---|---|
| 80 | 1,776 |
| 443 | 1,310 |
| 22 | 393 |
| 8291 | 275 |
| 445 | 229 |
| 81 | 202 |
| 8080 | 181 |
| 3306 | 153 |
| 123 | 133 |
| 8089 | 88 |
| 2222 | 61 |
| 8090 | 59 |
| 8081 | 50 |
| 8443 | 38 |
| 88 | 36 |
| 82 | 30 |
| 9090 | 27 |
| 8000 | 26 |
| 10001 | 26 |
| 161 | 19 |
| 3128 | 19 |
| 8009 | 19 |
| 8085 | 19 |
| 8888 | 19 |
| 9000 | 18 |
| 444 | 15 |
| 1080 | 15 |
| 3000 | 14 |
| 84 | 13 |
| 8069 | 12 |
| 10000 | 12 |
| 465 | 11 |
| 5432 | 11 |
| 9443 | 11 |
| 83 | 10 |
| 3333 | 10 |
| 7443 | 10 |
| 4444 | 9 |
| 8086 | 9 |
| 9092 | 9 |
| 587 | 8 |
| 5000 | 8 |
| 25 | 7 |
| 3389 | 7 |
| 4443 | 7 |
| 7001 | 7 |
| 9001 | 7 |
| 32400 | 7 |
| 23 | 6 |
| 85 | 6 |
Sistemas Autónomos (ASN)
Los ASN agrupan redes bajo una administración. Son útiles para coordinar remediación y priorizar conversaciones.
| ASN (Nombre) | Dispositivos |
|---|---|
| as27895 | 2,006 |
| as23201 | 1,617 |
| as266831 | 650 |
| as272062 | 597 |
| as7303 | 556 |
| as52455 | 292 |
| as28103 | 289 |
| as266858 | 279 |
| as27768 | 264 |
| as61512 | 216 |
| as11664 | 205 |
| as263717 | 200 |
| as27733 | 171 |
| as269914 | 166 |
| as270052 | 114 |
| as267702 | 85 |
| as27669 | 84 |
| as264631 | 83 |
| as27866 | 81 |
| as264705 | 55 |
| as27795 | 55 |
| as266876 | 46 |
| as263228 | 31 |
| as266814 | 31 |
| as264733 | 30 |
| as52468 | 30 |
| as263732 | 27 |
| as266694 | 26 |
| as273023 | 26 |
| as263750 | 25 |
| as269783 | 23 |
| as267795 | 22 |
| as267920 | 22 |
| as264756 | 21 |
| as269878 | 21 |
| as270096 | 20 |
| as264770 | 19 |
| as267885 | 18 |
| as273063 | 18 |
| as272026 | 17 |
| as266673 | 16 |
| as262183 | 15 |
| as265759 | 15 |
| as262250 | 14 |
| as265728 | 13 |
| as267905 | 13 |
| as269725 | 12 |
| as269731 | 12 |
| as269976 | 11 |
| as267837 | 10 |
Componentes HTTP
Tecnologías web visibles en dispositivos vulnerables: servidores, librerías, frameworks y extensiones.
| Componente HTTP | Instancias |
|---|---|
| Apache HTTP Server | 1,320 |
| Ubuntu | 871 |
| Nginx | 850 |
| PHP | 748 |
| OpenSSL | 577 |
| jQuery | 567 |
| Windows Server | 553 |
| lighttpd | 492 |
| Bootstrap | 294 |
| CentOS | 238 |
| Modernizr | 118 |
| jQuery CDN | 116 |
| ZURB Foundation | 112 |
| Debian | 106 |
| HSTS | 83 |
| IIS | 78 |
| jQuery UI | 68 |
| Microsoft ASP.NET | 58 |
| jQuery Migrate | 55 |
| Java | 37 |
| Python | 36 |
| Perl | 28 |
| Jetty | 22 |
| UNIX | 22 |
| Fedora | 20 |
| Flask | 20 |
| mod_perl | 20 |
| AngularJS | 18 |
| OpenResty | 18 |
| Underscore.js | 16 |
| MySQL | 13 |
| Node.js | 12 |
| AlmaLinux | 11 |
| Express | 11 |
| mod_ssl | 10 |
| XAMPP | 9 |
| Zabbix | 9 |
| mod_dav | 8 |
| Apache Traffic Server | 7 |
| mod_python | 7 |
| Apache Tomcat | 6 |
| Cloudflare | 6 |
| React | 6 |
| cdnjs | 6 |
| mod_jk | 6 |
| Backbone.js | 5 |
| Clipboard.js | 5 |
| DataTables | 5 |
| Google Analytics | 5 |
| Google Tag Manager | 5 |
Categorías HTTP
Agrupa componentes por tipo para mostrar patrones: servidores web, sistemas operativos, lenguajes, frameworks y seguridad.
| Categoría Componente HTTP | Instancias |
|---|---|
| Web servers | 2,798 |
| Operating systems | 1,827 |
| Reverse proxies | 850 |
| Programming languages | 828 |
| Web server extensions | 581 |
| JavaScript libraries | 570 |
| UI frameworks | 406 |
| CDN | 128 |
| Web frameworks | 109 |
| Security | 94 |
| JavaScript frameworks | 41 |
| Miscellaneous | 26 |
| Databases | 15 |
| JavaScript graphics | 9 |
| Analytics | 6 |
| CMS | 6 |
| CI | 5 |
| Tag managers | 5 |
| Blogs | 4 |
| Editors | 3 |
| Font scripts | 3 |
| Video players | 3 |
| Webmail | 3 |
| Development | 2 |
| Maps | 2 |
| Static site generator | 2 |
| Authentication | 1 |
| Caching | 1 |
| Hosting panels | 1 |
| LMS | 1 |
| Live chat | 1 |
| Message boards | 1 |
| Mobile frameworks | 1 |
| Network storage | 1 |
| Page builders | 1 |
| Rich text editors | 1 |
| Widgets | 1 |
| WordPress plugins | 1 |
Versiones SSL/TLS
Protocolos antiguos como SSLv2, SSLv3, TLS 1.0 y TLS 1.1 son señales de configuraciones que necesitan revisión.
| Versión SSL/TLS | Detecciones |
|---|---|
| tlsv1.2 | 1,259 |
| tlsv1.3 | 714 |
| tlsv1 | 563 |
| tlsv1.1 | 549 |
| sslv3 | 110 |
| sslv2 | 8 |
Dispositivos con capturas
Cuando Shodan tiene capturas, puede haber interfaces administrativas o paneles visibles que revelan información sensible.
| Tiene Captura | Cantidad |
|---|---|
| 1 | 5 |