Home Embedded Vulns General Vulns
32
New Embedded Vulns (7 Days)
348
Active Critical ESVs
tenda
Top Target (30 Days)
6.96
Average ESV CVSS Score

Vulnerability Trends (Last 6 Months)

ESV Severity Distribution (90 Days)

Top Affected ESV Vendors (90 Days)

  • tenda 105 Vulns
  • apple 51 Vulns
  • dlink 44 Vulns
  • ruijie 35 Vulns
  • qnap 31 Vulns

Recent Critical ESVs

CVE-2020-37002 CRITICAL 9.8
CVE-2025-21589 CRITICAL 9.8
CVE-2026-24858 CRITICAL 9.8
CVE-2025-15467 CRITICAL 9.8
CVE-2020-36940 CRITICAL 9.8

Recently Added Vulnerabilities

CVE ID Description Severity Published Type
CVE-2025-35983 Improper Certificate Validation (CWE-295) in the Controller 7000 OneLink implementation could allow an unprivileged att… Medium (6.5) 2025-07-10 Embedded
CVE-2025-5807 The Gwolle Guestbook plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘gwolle_gb_content’ para… Medium (6.1) 2025-07-10 General-Purpose
CVE-2025-4406 The wpForo Forum plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions… Medium (5.4) 2025-07-10 General-Purpose
CVE-2025-6976 The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Stored Cross-Site Scr… Medium (6.4) 2025-07-09 General-Purpose
CVE-2025-6975 The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Reflected Cross-Site … Medium (6.1) 2025-07-09 General-Purpose