23
New Embedded Vulns (7 Days)
147
Active Critical ESVs
Cisco
Top Target (30 Days)
7.84
Average ESV CVSS Score
Vulnerability Trends (Last 6 Months)
ESV Severity Distribution (90 Days)
Top Affected ESV Vendors (90 Days)
- Cisco 89 Vulns
- Siemens 67 Vulns
- Schneider Electric 54 Vulns
- Rockwell Automation 42 Vulns
- Honeywell 38 Vulns
- ABB 31 Vulns
- Emerson 28 Vulns
- GE Digital 24 Vulns
- Phoenix Contact 19 Vulns
- Mitsubishi Electric 16 Vulns
Recent Critical ESVs
CVE-2024-8923
CRITICAL 9.8
CVE-2024-8756
CRITICAL 9.4
CVE-2024-8621
CRITICAL 9.1
CVE-2024-8509
CRITICAL 9.0
CVE-2024-8334
CRITICAL 9.0
Recently Added Vulnerabilities
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-4369 | The Companion Auto Update plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘update_delay_days’… | Medium (5.5) | 2025-07-15 | General-Purpose |
| CVE-2025-24477 | A heap-based buffer overflow in Fortinet FortiOS versions 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2.4 through 7.2.1… | Medium (4.2) | 2025-07-15 | Embedded |
| CVE-2025-7672 | The improper default setting in JiranSoft CrossEditor4 on Windows, Linux, Unix (API modules) potentaily allows Stored X… | Medium (4.3) | 2025-07-15 | General-Purpose |
| CVE-2025-3621 | Vulnerabilities* in ActADUR local server product, developed and maintained by ProTNS, allows Remote Code Inclusion on h… | Critical (9.6) | 2025-07-15 | General-Purpose |
| CVE-2025-7367 | The Strong Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Testimonial Custom Fi… | Medium (6.4) | 2025-07-15 | General-Purpose |