0
New Embedded Vulns (7 Days)
348
Active Critical ESVs
tenda
Top Target (30 Days)
6.96
Average ESV CVSS Score
Vulnerability Trends (Last 6 Months)
ESV Severity Distribution (90 Days)
Top Affected ESV Vendors (90 Days)
- tenda 96 Vulns
- apple 47 Vulns
- ruijie 35 Vulns
- dlink 33 Vulns
- qnap 30 Vulns
Recent Critical ESVs
CVE-2020-37002
CRITICAL 9.8
CVE-2025-21589
CRITICAL 9.8
CVE-2026-24858
CRITICAL 9.8
CVE-2025-15467
CRITICAL 9.8
CVE-2020-36940
CRITICAL 9.8
Recently Added Vulnerabilities
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-42978 | The widely used component that establishes outbound TLS connections in SAP NetWeaver Application Server Java does not r… | Low (3.5) | 2025-07-08 | General-Purpose |
| CVE-2025-42974 | Due to missing authorization check, an attacker authenticated as a non-administrative user could call a remote-enabled … | Medium (4.3) | 2025-07-08 | General-Purpose |
| CVE-2025-42973 | Due to a Cross-Site Scripting vulnerability in SAP Data Services Management Console, an authenticated attacker could ex… | Medium (5.4) | 2025-07-08 | General-Purpose |
| CVE-2025-42971 | A memory corruption vulnerability exists in SAPCAR allowing an attacker to craft malicious SAPCAR archives. When a high… | Medium (4.0) | 2025-07-08 | General-Purpose |
| CVE-2025-42970 | SAPCAR improperly sanitizes the file paths while extracting SAPCAR archives. Due to this, an attacker could craft a mal… | Medium (5.8) | 2025-07-08 | General-Purpose |