Home Embedded Vulns General Vulns

ESV-Tracker

An AI-powered database that classifies embedded vulnerabilities separately from general-purpose ones.

No Dedicated Database Existed. Until Now.

Embedded system vulnerabilities are critical, yet buried alongside millions of general CVEs. ESV-Tracker changes that.

Your Embedded Threat Center.

Search the database, track embedded CVEs, and explore real-time statistics — all in one place.

1173
New Embedded Vulns (7 Days)
8747
Active Critical ESVs
apple
Top Target (30 Days)
6.97
Average ESV CVSS Score

Vulnerability Trends (Last 6 Months)

ESV Severity Distribution (90 Days)

Top Affected ESV Vendors (90 Days)

  • google 133 Vulns
  • apple 120 Vulns
  • tenda 98 Vulns
  • microsoft 65 Vulns
  • adobe 57 Vulns

Recent Critical ESVs

CVE-2018-25237 CRITICAL 9.8
CVE-2026-28766 CRITICAL 9.3
CVE-2026-25197 CRITICAL 9.1
CVE-2017-20237 CRITICAL 9.8
CVE-2026-28798 CRITICAL 9.0

Recently Added Vulnerabilities

CVE ID Description Severity Published Type
CVE-2013-3932 SQL injection vulnerability in the Jomres (com_jomres) component before 7.3.1 for Joomla! allows remote authenticated u… High (8.8) 2020-01-02 General Purpose
CVE-2013-3931 Cross-site scripting (XSS) vulnerability in the Jomres (com_jomres) component before 7.3.1 for Joomla! allows remote au… Medium (5.4) 2020-01-02 General Purpose
CVE-2013-3247 Heap-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a … High (7.8) 2020-01-02 General Purpose
CVE-2013-3246 Stack-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a… High (7.8) 2020-01-02 General Purpose
CVE-2014-4553 Cross-site Scripting (XSS) in the spreadshirt-rss-3d-cube-flash-gallery plugin 2014 for WordPress allows remote attacke… Medium (6.1) 2020-01-02 General Purpose