23
New Embedded Vulns (7 Days)
147
Active Critical ESVs
Cisco
Top Target (30 Days)
7.84
Average ESV CVSS Score
Vulnerability Trends (Last 6 Months)
ESV Severity Distribution (90 Days)
Top Affected ESV Vendors (90 Days)
- Cisco 89 Vulns
- Siemens 67 Vulns
- Schneider Electric 54 Vulns
- Rockwell Automation 42 Vulns
- Honeywell 38 Vulns
- ABB 31 Vulns
- Emerson 28 Vulns
- GE Digital 24 Vulns
- Phoenix Contact 19 Vulns
- Mitsubishi Electric 16 Vulns
Recent Critical ESVs
CVE-2024-8923
CRITICAL 9.8
CVE-2024-8756
CRITICAL 9.4
CVE-2024-8621
CRITICAL 9.1
CVE-2024-8509
CRITICAL 9.0
CVE-2024-8334
CRITICAL 9.0
Recently Added Vulnerabilities
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-47813 | loginok.html in Wing FTP Server before 7.4.4 discloses the full local installation path of the application when using a… | Medium (4.3) | 2025-07-10 | Embedded |
| CVE-2025-47812 | In Wing FTP Server before 7.4.4. the user and admin web interfaces mishandle '\0' bytes, ultimately allowing injection … | Critical (10.0) | 2025-07-10 | Embedded |
| CVE-2025-47811 | In Wing FTP Server through 7.4.4, the administrative web interface (listening by default on port 5466) runs as root or … | Medium (4.1) | 2025-07-10 | Embedded |
| CVE-2025-27889 | Wing FTP Server before 7.4.4 does not properly validate and sanitize the url parameter of the downloadpass.html endpoin… | Low (3.4) | 2025-07-10 | Embedded |
| CVE-2025-23048 | In some mod_ssl configurations on Apache HTTP Server 2.4.35 through to 2.4.63, an access control bypass by trusted clie… | Critical (9.1) | 2025-07-10 | General-Purpose |