ESV-Tracker
An AI-powered database that classifies embedded vulnerabilities separately from general-purpose ones.
514
New Embedded Vulns (7 Days)
9127
Active Critical ESVs
apache
Top Target (30 Days)
6.95
Average ESV CVSS Score
Vulnerability Trends (Last 6 Months)
ESV Severity Distribution (90 Days)
Top Affected ESV Vendors (90 Days)
- google 131 Vulns
- apple 111 Vulns
- adobe 68 Vulns
- microsoft 66 Vulns
- tenda 64 Vulns
Recent Critical ESVs
CVE-2026-9141
CRITICAL 9.8
CVE-2026-9139
CRITICAL 9.8
CVE-2026-45444
CRITICAL 10.0
CVE-2026-20223
CRITICAL 10.0
CVE-2026-8598
CRITICAL 9.1
Recently Added Vulnerabilities
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2026-9149 | A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted… | Medium (6.5) | 2026-05-21 | Environment Specific |
| CVE-2026-40165 | authentik is an open-source identity provider. Versions 2025.12.4 and prior, and versions 2026.2.0-rc1 through 2026.2.2… | High (8.7) | 2026-05-21 | Environment Specific |
| CVE-2026-9150 | A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser … | Medium (6.5) | 2026-05-20 | Environment Specific |
| CVE-2026-8399 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | Unknown | 2026-05-20 | Environment Specific |
| CVE-2026-47782 | Android App "RoboForm Password Manager" provided by Siber Systems, Inc. handles Android intents without sufficient URL … | Unknown | 2026-05-20 | Environment Specific |