Home Embedded Vulns General Vulns
0
New Embedded Vulns (7 Days)
8113
Active Critical ESVs
N/A
Top Target (30 Days)
6.99
Average ESV CVSS Score

Vulnerability Trends (Last 6 Months)

ESV Severity Distribution (90 Days)

Top Affected ESV Vendors (90 Days)

  • tenda 41 Vulns
  • qnap 26 Vulns
  • juniper 21 Vulns
  • color 15 Vulns
  • utt 14 Vulns

Recent Critical ESVs

CVE-2020-37002 CRITICAL 9.8
CVE-2025-21589 CRITICAL 9.8
CVE-2026-24858 CRITICAL 9.8
CVE-2025-15467 CRITICAL 9.8
CVE-2020-36940 CRITICAL 9.8

Recently Added Vulnerabilities

CVE ID Description Severity Published Type
CVE-2019-20381 TestLink before 1.9.20 allows XSS via non-lowercase javascript: in the index.php reqURI parameter. NOTE: this issue exi… Medium (6.1) 2020-01-20 General Purpose
CVE-2020-7237 Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug … High (8.8) 2020-01-20 General Purpose
CVE-2020-7236 UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cw2?td= (Site Name field of the Site Setup section). Medium (6.1) 2020-01-19 Environment Specific
CVE-2020-7235 UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cB3?ta= (profile title). Medium (6.1) 2020-01-19 Environment Specific
CVE-2020-7234 Ruckus ZoneFlex R310 104.0.0.0.1347 devices allow Stored XSS via the SSID field on the Configuration > Radio 2.4G > Wir… Medium (4.8) 2020-01-19 Environment Specific