0
New Embedded Vulns (7 Days)
348
Active Critical ESVs
tenda
Top Target (30 Days)
6.96
Average ESV CVSS Score
Vulnerability Trends (Last 6 Months)
ESV Severity Distribution (90 Days)
Top Affected ESV Vendors (90 Days)
- tenda 96 Vulns
- apple 48 Vulns
- dlink 44 Vulns
- ruijie 35 Vulns
- qnap 30 Vulns
Recent Critical ESVs
CVE-2020-37002
CRITICAL 9.8
CVE-2025-21589
CRITICAL 9.8
CVE-2026-24858
CRITICAL 9.8
CVE-2025-15467
CRITICAL 9.8
CVE-2020-36940
CRITICAL 9.8
Recently Added Vulnerabilities
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-61246 | indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in master/review_action.php via the proId para… | Critical (9.8) | 2026-01-08 | General-Purpose |
| CVE-2025-59470 | This vulnerability allows a Backup Operator to perform remote code execution (RCE) as the postgres user by sending a ma… | Critical (9.0) | 2026-01-08 | General-Purpose |
| CVE-2025-59469 | This vulnerability allows a Backup or Tape Operator to write files as root. | Critical (9.0) | 2026-01-08 | Embedded |
| CVE-2025-59468 | This vulnerability allows a Backup Administrator to perform remote code execution (RCE) as the postgres user by sending… | Critical (9.0) | 2026-01-08 | General-Purpose |
| CVE-2025-56425 | An issue was discovered in the AppConnector component version 10.10.0.183 and earlier of enaio 10.10, in the AppConnect… | Critical (9.1) | 2026-01-08 | General-Purpose |