Home Embedded Vulns General Vulns

ESV-Tracker

An AI-powered database that classifies embedded vulnerabilities separately from general-purpose ones.

No Dedicated Database Existed. Until Now.

Embedded system vulnerabilities are critical, yet buried alongside millions of general CVEs. ESV-Tracker changes that.

Your Embedded Threat Center.

Search the database, track embedded CVEs, and explore real-time statistics — all in one place.

1378
New Embedded Vulns (7 Days)
8797
Active Critical ESVs
apple
Top Target (30 Days)
6.97
Average ESV CVSS Score

Vulnerability Trends (Last 6 Months)

ESV Severity Distribution (90 Days)

Top Affected ESV Vendors (90 Days)

  • google 133 Vulns
  • apple 120 Vulns
  • tenda 96 Vulns
  • microsoft 65 Vulns
  • adobe 57 Vulns

Recent Critical ESVs

CVE-2026-40035 CRITICAL 9.1
CVE-2026-39890 CRITICAL 9.8
CVE-2026-39888 CRITICAL 9.9
CVE-2026-39860 CRITICAL 9.0
CVE-2026-2942 CRITICAL 9.8

Recently Added Vulnerabilities

CVE ID Description Severity Published Type
CVE-2013-4521 RichFaces implementation in Nuxeo Platform 5.6.0 before HF27 and 5.8.0 before HF-01 does not restrict the classes for w… Critical (9.8) 2020-02-06 General Purpose
CVE-2016-1544 nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion). Low (3.3) 2020-02-06 General Purpose
CVE-2015-2909 Dedicated Micros DV-IP Express, SD Advanced, SD, EcoSense, and DS2 devices rely on a GUI warning to help ensure that th… Critical (9.8) 2020-02-06 Environment Specific
CVE-2014-8271 Buffer overflow in the Reclaim function in Tianocore EDK2 before SVN 16280 allows physically proximate attackers to gai… Medium (6.8) 2020-02-06 Environment Specific
CVE-2014-2030 Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick, possibly 6.8.8-5, allows remo… High (8.8) 2020-02-06 General Purpose