Home Embedded Vulns General Vulns
126
New Embedded Vulns (7 Days)
348
Active Critical ESVs
tenda
Top Target (30 Days)
6.96
Average ESV CVSS Score

Vulnerability Trends (Last 6 Months)

ESV Severity Distribution (90 Days)

Top Affected ESV Vendors (90 Days)

  • apple 137 Vulns
  • tenda 109 Vulns
  • samsung 52 Vulns
  • dlink 45 Vulns
  • ruijie 35 Vulns

Recent Critical ESVs

CVE-2020-37002 CRITICAL 9.8
CVE-2025-21589 CRITICAL 9.8
CVE-2026-24858 CRITICAL 9.8
CVE-2025-15467 CRITICAL 9.8
CVE-2020-36940 CRITICAL 9.8

Recently Added Vulnerabilities

CVE ID Description Severity Published Type
CVE-2025-40209 In the Linux kernel, the following vulnerability has been resolved: btrfs: fix memory leak of qgroup_list in btrfs_add… Unknown 2025-11-21 General-Purpose
CVE-2025-13138 The WP Directory Kit plugin for WordPress is vulnerable to SQL Injection via the 'columns_search' parameter of the sele… High (7.5) 2025-11-21 General-Purpose
CVE-2025-12964 The Magical Products Display plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'mpdpr_title_tag… Medium (6.4) 2025-11-21 General-Purpose
CVE-2025-12750 The Groundhogg — CRM, Newsletters, and Marketing Automation plugin for WordPress is vulnerable to SQL Injection via the… Medium (4.9) 2025-11-21 General-Purpose
CVE-2025-12160 The Simple User Registration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wpr_admin_msg' … High (7.2) 2025-11-21 General-Purpose