111
New Embedded Vulns (7 Days)
348
Active Critical ESVs
tenda
Top Target (30 Days)
6.96
Average ESV CVSS Score
Vulnerability Trends (Last 6 Months)
ESV Severity Distribution (90 Days)
Top Affected ESV Vendors (90 Days)
- tenda 105 Vulns
- apple 53 Vulns
- samsung 52 Vulns
- dlink 45 Vulns
- ruijie 35 Vulns
Recent Critical ESVs
CVE-2020-37002
CRITICAL 9.8
CVE-2025-21589
CRITICAL 9.8
CVE-2026-24858
CRITICAL 9.8
CVE-2025-15467
CRITICAL 9.8
CVE-2020-36940
CRITICAL 9.8
Recently Added Vulnerabilities
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2026-0625 | Multiple D-Link DSL/DIR/DNS devices contain an authentication bypass and improper access control vulnerability in the d… | Unknown | 2026-01-05 | Embedded |
| CVE-2025-69223 | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow a zip b… | High (7.5) | 2026-01-05 | General-Purpose |
| CVE-2025-68953 | Frappe is a full-stack web application framework. Versions 14.99.5 and below and 15.0.0 through 15.80.1 include request… | High (7.5) | 2026-01-05 | Embedded |
| CVE-2025-68456 | Craft is a platform for creating digital experiences. In versions 5.0.0-RC1 through 5.8.20 and 3.0.0 through 4.16.16, … | Critical (9.1) | 2026-01-05 | General-Purpose |
| CVE-2025-68455 | Craft is a platform for creating digital experiences. Versions 5.0.0-RC1 through 5.8.20 and 4.0.0-RC1 through 4.16.16 a… | High (7.2) | 2026-01-05 | General-Purpose |