Home Embedded Vulns General Vulns

ESV-Tracker

An AI-powered database that classifies embedded vulnerabilities separately from general-purpose ones.

No Dedicated Database Existed. Until Now.

Embedded system vulnerabilities are critical, yet buried alongside millions of general CVEs. ESV-Tracker changes that.

Your Embedded Threat Center.

Search the database, track embedded CVEs, and explore real-time statistics — all in one place.

1435
New Embedded Vulns (7 Days)
8668
Active Critical ESVs
google
Top Target (30 Days)
6.97
Average ESV CVSS Score

Vulnerability Trends (Last 6 Months)

ESV Severity Distribution (90 Days)

Top Affected ESV Vendors (90 Days)

  • google 117 Vulns
  • apple 104 Vulns
  • tenda 103 Vulns
  • adobe 57 Vulns
  • openclaw 55 Vulns

Recent Critical ESVs

CVE-2018-25223 CRITICAL 9.8
CVE-2018-25221 CRITICAL 9.8
CVE-2018-25220 CRITICAL 9.8
CVE-2017-20229 CRITICAL 9.8
CVE-2017-20227 CRITICAL 9.8

Recently Added Vulnerabilities

CVE ID Description Severity Published Type
CVE-2020-6632 In PrestaShop 1.7.6.2, XSS can occur during addition or removal of a QuickAccess link. This is related to AdminQuickAcc… Medium (6.1) 2020-01-09 General Purpose
CVE-2020-6631 An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_m2ts_stream_proce… Medium (5.5) 2020-01-09 General Purpose
CVE-2020-6630 An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_isom_get_media_da… Medium (5.5) 2020-01-09 General Purpose
CVE-2020-6629 Ming (aka libming) 0.4.8 has z NULL pointer dereference in the function decompileGETURL2() in decompile.c. Medium (6.5) 2020-01-09 Environment Specific
CVE-2020-6628 Ming (aka libming) 0.4.8 has a heap-based buffer over-read in the function decompile_SWITCH() in decompile.c. High (8.8) 2020-01-09 General Purpose