Home Embedded Vulns General Vulns

ESV-Tracker

An AI-powered database that classifies embedded vulnerabilities separately from general-purpose ones.

No Dedicated Database Existed. Until Now.

Embedded system vulnerabilities are critical, yet buried alongside millions of general CVEs. ESV-Tracker changes that.

Your Embedded Threat Center.

Search the database, track embedded CVEs, and explore real-time statistics — all in one place.

1274
New Embedded Vulns (7 Days)
8769
Active Critical ESVs
apple
Top Target (30 Days)
6.97
Average ESV CVSS Score

Vulnerability Trends (Last 6 Months)

ESV Severity Distribution (90 Days)

Top Affected ESV Vendors (90 Days)

  • google 133 Vulns
  • apple 120 Vulns
  • tenda 96 Vulns
  • microsoft 65 Vulns
  • adobe 57 Vulns

Recent Critical ESVs

CVE-2025-54328 CRITICAL 10.0
CVE-2026-35050 CRITICAL 9.1
CVE-2026-35039 CRITICAL 9.1
CVE-2026-34976 CRITICAL 10.0
CVE-2026-34841 CRITICAL 9.8

Recently Added Vulnerabilities

CVE ID Description Severity Published Type
CVE-2019-19893 In IXP EasyInstall 6.2.13723, there is Directory Traversal on TCP port 8000 via the Engine Service by an unauthenticate… High (7.5) 2020-01-23 Environment Specific
CVE-2015-5333 Memory leak in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service (… High (7.5) 2020-01-23 General Purpose
CVE-2015-5745 Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c in QEMU before 2.4.0 allows guest users… Medium (6.5) 2020-01-23 General Purpose
CVE-2015-5334 Off-by-one error in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of serv… Critical (9.8) 2020-01-23 General Purpose
CVE-2015-5278 The ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows attackers to cause a denial of service (in… Medium (6.5) 2020-01-23 General Purpose