Home Embedded Vulns General Vulns

ESV-Tracker

An AI-powered database that classifies embedded vulnerabilities separately from general-purpose ones.

No Dedicated Database Existed. Until Now.

Embedded system vulnerabilities are critical, yet buried alongside millions of general CVEs. ESV-Tracker changes that.

Your Embedded Threat Center.

Search the database, track embedded CVEs, and explore real-time statistics — all in one place.

1024
New Embedded Vulns (7 Days)
9027
Active Critical ESVs
openclaw
Top Target (30 Days)
6.96
Average ESV CVSS Score

Vulnerability Trends (Last 6 Months)

ESV Severity Distribution (90 Days)

Top Affected ESV Vendors (90 Days)

  • google 131 Vulns
  • apple 112 Vulns
  • microsoft 69 Vulns
  • adobe 68 Vulns
  • openclaw 66 Vulns

Recent Critical ESVs

CVE-2026-36767 CRITICAL 10.0
CVE-2026-36760 CRITICAL 9.6
CVE-2025-71284 CRITICAL 9.8
CVE-2022-50993 CRITICAL 9.8
CVE-2026-4670 CRITICAL 9.8

Recently Added Vulnerabilities

CVE ID Description Severity Published Type
CVE-2026-1577 IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes Db2 Connect Server) coul… Medium (6.5) 2026-04-30 General Purpose
CVE-2025-36335 IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.3.0, 5.3.1 stores user credentials in plain text which can be read by a l… Medium (6.2) 2026-04-30 Environment Specific
CVE-2025-36180 IBM watsonx.data 2.2 through 2.3 IBM Lakehouse does not properly restrict communication between pods which could allow … Medium (5.3) 2026-04-30 Environment Specific
CVE-2025-36122 IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes DB2 Connect Server) coul… Medium (6.5) 2026-04-30 Environment Specific
CVE-2025-14688 IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes Db2 Connect Server) coul… Medium (5.3) 2026-04-30 Environment Specific