Home Embedded Vulns General Vulns

ESV-Tracker

An AI-powered database that classifies embedded vulnerabilities separately from general-purpose ones.

No Dedicated Database Existed. Until Now.

Embedded system vulnerabilities are critical, yet buried alongside millions of general CVEs. ESV-Tracker changes that.

Your Embedded Threat Center.

Search the database, track embedded CVEs, and explore real-time statistics — all in one place.

366
New Embedded Vulns (7 Days)
9205
Active Critical ESVs
ibm
Top Target (30 Days)
6.95
Average ESV CVSS Score

Vulnerability Trends (Last 6 Months)

ESV Severity Distribution (90 Days)

Top Affected ESV Vendors (90 Days)

  • apple 76 Vulns
  • microsoft 36 Vulns
  • apache 29 Vulns
  • linux 28 Vulns
  • hcltech 19 Vulns

Recent Critical ESVs

CVE-2026-56397 CRITICAL 9.6
CVE-2026-56395 CRITICAL 9.6
CVE-2026-56265 CRITICAL 9.8
CVE-2026-48713 CRITICAL 9.1
CVE-2026-9691 CRITICAL 9.8

Recently Added Vulnerabilities

CVE ID Description Severity Published Type
CVE-2026-56382 Craft CMS (composer package craftcms/cms) versions >= 5.5.0 and <= 5.9.13 contain a remote code execution vulnerability… High (7.2) 2026-06-21 Environment Specific
CVE-2026-56381 Craft CMS from version 5.0.0-RC1 contains a stored cross-site scripting vulnerability in the User Permissions page wher… Medium (4.8) 2026-06-21 Environment Specific
CVE-2026-56378 ImageMagick before 7.1.2-15 (and 6.x before 6.9.13-40) contains a heap out-of-bounds read in the PCD coder's DecodeImag… Low (3.7) 2026-06-21 Environment Specific
CVE-2026-56367 ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB (PSD v2) RLE decoding pa… Low (3.7) 2026-06-21 Environment Specific
CVE-2026-56316 Cap-go before 12.128.2 contains an information disclosure vulnerability in the OPTIONS /build/upload/:jobId/* endpoint … Medium (5.3) 2026-06-21 Environment Specific