Home Embedded Vulns General Vulns

ESV-Tracker

An AI-powered database that classifies embedded vulnerabilities separately from general-purpose ones.

No Dedicated Database Existed. Until Now.

Embedded system vulnerabilities are critical, yet buried alongside millions of general CVEs. ESV-Tracker changes that.

Your Embedded Threat Center.

Search the database, track embedded CVEs, and explore real-time statistics — all in one place.

1191
New Embedded Vulns (7 Days)
8788
Active Critical ESVs
apple
Top Target (30 Days)
6.97
Average ESV CVSS Score

Vulnerability Trends (Last 6 Months)

ESV Severity Distribution (90 Days)

Top Affected ESV Vendors (90 Days)

  • google 133 Vulns
  • apple 120 Vulns
  • tenda 96 Vulns
  • microsoft 65 Vulns
  • adobe 57 Vulns

Recent Critical ESVs

CVE-2026-39847 CRITICAL 9.1
CVE-2026-39846 CRITICAL 9.0
CVE-2026-39397 CRITICAL 9.4
CVE-2026-39355 CRITICAL 9.9
CVE-2026-39339 CRITICAL 9.1

Recently Added Vulnerabilities

CVE ID Description Severity Published Type
CVE-2020-5205 In Pow (Hex package) before 1.0.16, the use of Plug.Session in Pow.Plug.Session is susceptible to session fixation atta… Medium (6.5) 2020-01-09 General Purpose
CVE-2019-16773 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-20042. Reason: This candidate is a duplicate of… Unknown 2020-01-09 General Purpose
CVE-2020-6625 jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c. High (7.1) 2020-01-09 General Purpose
CVE-2020-6624 jhead through 3.04 has a heap-based buffer over-read in process_DQT in jpgqguess.c. High (7.1) 2020-01-09 Environment Specific
CVE-2019-11292 Pivotal Ops Manager, versions 2.4.x prior to 2.4.27, 2.5.x prior to 2.5.24, 2.6.x prior to 2.6.16, and 2.7.x prior to 2… Medium (6.5) 2020-01-09 General Purpose