Embedded System Vulnerabilities
A focused list of vulnerabilities relevant to embedded and IoT devices.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-49739 | Improper link resolution before file access ('link following') in Visual Studio allows an unauthorized attacker to elev… | High (8.8) | 2025-07-08 | Embedded |
| CVE-2025-49738 | Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to… | High (7.8) | 2025-07-08 | Embedded |
| CVE-2025-49686 | Null pointer dereference in Windows TCP/IP allows an authorized attacker to elevate privileges locally. | High (7.8) | 2025-07-08 | Embedded |
| CVE-2025-49684 | Buffer over-read in Storage Port Driver allows an authorized attacker to disclose information locally. | Medium (5.5) | 2025-07-08 | Embedded |
| CVE-2025-49680 | Improper link resolution before file access ('link following') in Windows Performance Recorder allows an authorized att… | High (7.3) | 2025-07-08 | Embedded |