Solution sectors / networking-infrastructure
Networking & Infrastructure
Routers, firewalls, VPN gateways and DNS servers sit at the edge of every network, so a single flaw can expose everything behind it. This hub follows CVE trends across network hardware and infrastructure software.
load-balancer-proxy · 73router-switch · 52network-management · 42dns-dhcp-ntp · 31firewall · 7vpn-gateway · 2
Cumulative CVEs
26,487
across 294 monthly snapshots
Latest month
374
-52.7% MoM · +14.0% YoY
Peak month
791
May 26
KEV this month
18
102 vendors affected
CVEs per month
Newest period on the right. Click a point to open that monthly report.
Deployment mix
How this sector's software is typically delivered — whether you patch it yourself or a vendor does. AI-assisted vendor classification.
- Embedded51%
- On-prem37%
- Mixed13%
Latest CVEs in this sector
The 15 most recently published vulnerabilities tagged to Networking & Infrastructure.
- CVE-2026-58374In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 (IEEE 802.11be) Multi-Link Operation (MLO) association request processing allows an unauthenticated attacker within wireless range ...6.5
- CVE-2025-7406A Sudo Privilege Escalation Vulnerability in Nokia MantaRay NM7.8
- CVE-2025-24816An Improper Access Control vulnerability in Nokia MantaRay NM6.5
- CVE-2025-24815An unrestricted file upload vulnerability in Nokia MantaRay NM7.8
- CVE-2026-55957Apache Tomcat: Authentication bypass with JNDIRealm and GSSAPI authenticated bind7.3
- CVE-2026-55956Apache Tomcat: Security constraints for default servlet ignored method6.5
- CVE-2026-55955Apache Tomcat: EncryptInterceptor not protected against replay attacks6.5
- CVE-2026-55276Apache Tomcat: Logged effective web.xml is incomplete9.1
- CVE-2026-53434Apache Tomcat: Invalid CRL configuration doesn't trigger failure for FFM Connector9.1
- CVE-2026-53404Apache Tomcat: Bad ornext processing in RewriteValve7.3
- CVE-2026-50229Apache Tomcat: XSS in number guess example6.1
- CVE-2026-13583Edimax EW-7478APC POST Request formUSBFolder buffer overflow8.8
- CVE-2026-13582Edimax EW-7478APC POST Request formUSBAccount buffer overflow8.8
- CVE-2026-13581Edimax EW-7478APC POST Request formStaDrvSetup os command injection6.3
- CVE-2026-13580Edimax EW-7478APC POST Request formQoS buffer overflow8.8
Weakness fingerprint
Top CWE classes in this sector, latest monthly snapshot.
Top vendors
Most CVEs in this sector, latest monthly snapshot.
| Vendor | CVEs | Crit | KEV |
|---|---|---|---|
| acer | 26 | 8 | · |
| netgear | 17 | · | · |
| tenda | 17 | 1 | · |
| arista networks | 16 | 2 | 1 |
| shenzhen tenda technology co., ltd. | 16 | · | · |
| tp-link systems inc. | 16 | · | · |
| edimax | 14 | · | · |
| powerdns | 14 | · | · |
| roxy-wi | 14 | 4 | · |
| cisco | 10 | 1 | 3 |
Subsectors
Breakdown for the latest monthly snapshot.
| Subsector | CVEs | Crit | KEV | Vendors | MoM | Top products |
|---|---|---|---|---|---|---|
| — | 167 | 89 | 13 | 30 | — | connect m6e 5g firmware (26) · connect m6e 5g portable wifi router (26) · ew-7478apc (9) |
| load-balancer-proxy | 73 | 22 | 3 | 22 | — | http server (14) · apache http server (13) · apache apisix (12) |
| router-switch | 52 | 11 | 2 | 16 | — | tenda w15e (16) · eos (8) · unizon (6) |
| network-management | 42 | 9 | · | 20 | — | roxy-wi (14) · flexric (8) · eos / cloudvision exchange (cvx) (3) |
| dns-dhcp-ntp | 31 | 1 | · | 9 | — | dhcpcd (8) · nsd (8) · recursor (7) |
| firewall | 7 | 1 | · | 3 | — | arista edge threat management - arista next generation firewall (ngfw) (5) · moveit waf (1) · stormshield network security (1) |
| vpn-gateway | 2 | · | · | 2 | — | 3x-ui (1) · x-vpn macos website (1) |
Sector classification is AI-assisted with human review. How tagging works · Report a misclassification