85
New Embedded Vulns (7 Days)
348
Active Critical ESVs
tenda
Top Target (30 Days)
6.96
Average ESV CVSS Score
Vulnerability Trends (Last 6 Months)
ESV Severity Distribution (90 Days)
Top Affected ESV Vendors (90 Days)
- tenda 105 Vulns
- apple 53 Vulns
- dlink 45 Vulns
- samsung 36 Vulns
- ruijie 35 Vulns
Recent Critical ESVs
CVE-2020-37002
CRITICAL 9.8
CVE-2025-21589
CRITICAL 9.8
CVE-2026-24858
CRITICAL 9.8
CVE-2025-15467
CRITICAL 9.8
CVE-2020-36940
CRITICAL 9.8
Recently Added Vulnerabilities
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-13215 | The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Information Exposure in all ver… | Medium (5.3) | 2026-01-06 | General-Purpose |
| CVE-2025-15001 | The FS Registration Password plugin for WordPress is vulnerable to privilege escalation via account takeover in all ver… | Critical (9.8) | 2026-01-06 | General-Purpose |
| CVE-2025-14997 | The BuddyPress Xprofile Custom Field Types plugin for WordPress is vulnerable to arbitrary file deletion due to insuffi… | High (7.2) | 2026-01-06 | General-Purpose |
| CVE-2025-14996 | The AS Password Field In Default Registration Form plugin for WordPress is vulnerable to privilege escalation via accou… | Critical (9.8) | 2026-01-06 | General-Purpose |
| CVE-2025-14441 | The Popupkit plugin for WordPress is vulnerable to arbitrary subscriber data deletion due to missing authorization on t… | Medium (5.3) | 2026-01-06 | General-Purpose |