| | CVE-2014-4056 |  Microsoft | critical | 9.3 | 16.3%
| | Microsoft Internet Explorer 7 through 10 allows remote attackers to execute arbitrary code or cause … | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-4057 | Microsoft | critical | 9.3 | 15.8%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-4058 | Microsoft | critical | 9.3 | 16.3%
| | Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause … | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-4060 | Microsoft | medium | 6.8 | 27.7%
| | Use-after-free vulnerability in MCPlayer.dll in Microsoft Windows Media Center TV Pack for Windows V… | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-4061 | Microsoft | medium | 6.8 | 38.4%
| | Microsoft SQL Server 2008 SP3, 2008 R2 SP2, and 2012 SP1 does not properly control use of stack memo… | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-4062 | Microsoft | medium | 4.3 | 15.0%
| | Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, and 3.5.1 does not properly implement the A… | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-4063 | Microsoft | critical | 9.3 | 14.9%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause … | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-4067 | Microsoft | critical | 9.3 | 16.3%
| | Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a d… | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-3337 |  Cisco | medium | 6.8 | 1.8%
| | The SIP implementation in Cisco Unified Communications Manager (CM) 8.6(.2) and earlier allows remot… | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-3338 | Cisco | high | 8.5 | 1.7%
| | The CTIManager module in Cisco Unified Communications Manager (CM) 10.0(1), when single sign-on is e… | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-3339 | Cisco | medium | 6.5 | 0.3%
| | Multiple SQL injection vulnerabilities in the administrative web interface in Cisco Unified Communic… | Aug 12, 2014 | May 6, 2026 |
| | CVE-2014-5239 | Microsoft | medium | 4.0 | 5.3%
| | The Microsoft Outlook.com application before 7.8.2.12.49.7090 for Android does not verify X.509 cert… | Aug 14, 2014 | May 6, 2026 |
| | CVE-2014-3504 |  Apache | medium | 4.0 | 2.1%
| | The (1) serf_ssl_cert_issuer, (2) serf_ssl_cert_subject, and (3) serf_ssl_cert_certificate functions… | Aug 19, 2014 | May 6, 2026 |
| | CVE-2014-3522 | Apache | medium | 4.0 | 2.6%
| | The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 doe… | Aug 19, 2014 | May 6, 2026 |
| | CVE-2014-3528 | Apache | medium | 4.0 | 3.4%
| | Apache Subversion 1.0.0 through 1.7.x before 1.7.17 and 1.8.x before 1.8.10 uses an MD5 hash of the … | Aug 19, 2014 | May 6, 2026 |
| | CVE-2014-3331 | Cisco | medium | 4.3 | 0.3%
| | The Session Manager component in Packet Data Network Gateway (aka PGW) in Cisco ASR 5000 Series Soft… | Aug 20, 2014 | May 6, 2026 |
| | CVE-2014-3340 | Cisco | medium | 4.0 | 0.3%
| | Directory traversal vulnerability in an unspecified PHP script in the server in Cisco WebEx MeetMeNo… | Aug 20, 2014 | May 6, 2026 |
| | CVE-2014-3577 | Apache | medium | 5.8 | 1.4%
| | org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpA… | Aug 21, 2014 | May 6, 2026 |
| | CVE-2014-0232 | Apache | medium | 4.3 | 12.6%
| | Multiple cross-site scripting (XSS) vulnerabilities in framework/common/webcommon/includes/messages.… | Aug 22, 2014 | May 6, 2026 |
| | CVE-2014-3525 | Apache | critical | 10.0 | 1.3%
| | Unspecified vulnerability in Apache Traffic Server 3.x through 3.2.5, 4.x before 4.2.1.1, and 5.x be… | Aug 22, 2014 | May 6, 2026 |
| | CVE-2013-6222 |  HPE | medium | 4.3 | 0.9%
| | Cross-site scripting (XSS) vulnerability in the Mobility Web Client and Service Request Catalog (SRC… | Aug 23, 2014 | May 6, 2026 |
| | CVE-2014-2632 | HPE | critical | 10.0 | 37.0%
| | Unspecified vulnerability in the WebTier component in HP Service Manager (SM) 7.21 and 9.x before 9.… | Aug 23, 2014 | May 6, 2026 |
| | CVE-2014-2633 | HPE | medium | 6.8 | 0.3%
| | Cross-site request forgery (CSRF) vulnerability in the server in HP Service Manager (SM) 7.21 and 9.… | Aug 23, 2014 | May 6, 2026 |
| | CVE-2014-2634 | HPE | critical | 9.4 | 5.4%
| | Unspecified vulnerability in the server in HP Service Manager (SM) 7.21 and 9.x before 9.34 allows r… | Aug 23, 2014 | May 6, 2026 |
| | CVE-2014-3524 | Apache | critical | 9.3 | 10.7%
| | Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly ha… | Aug 26, 2014 | May 6, 2026 |
| | CVE-2014-3575 | Apache | medium | 4.3 | 9.9%
| | The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org (OOo) might allow re… | Aug 27, 2014 | May 6, 2026 |
| | CVE-2014-3596 | Apache | medium | 5.8 | 1.2%
| | The getCN function in Apache Axis 1.4 and earlier does not properly verify that the server hostname … | Aug 27, 2014 | May 6, 2026 |
| | CVE-2014-3344 | Cisco | medium | 4.3 | 0.5%
| | Multiple cross-site scripting (XSS) vulnerabilities in the web framework in Cisco Transport Gateway … | Aug 28, 2014 | May 6, 2026 |
| | CVE-2014-4199 |  VMware | medium | 6.3 | 0.0%
| | vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other pro… | Aug 28, 2014 | May 6, 2026 |
| | CVE-2014-4200 | VMware | medium | 4.7 | 0.0%
| | vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other pro… | Aug 28, 2014 | May 6, 2026 |
| | CVE-2014-3345 | Cisco | medium | 5.0 | 0.7%
| | The web framework in Cisco Transport Gateway for Smart Call Home (aka TG-SCH or Transport Gateway In… | Aug 28, 2014 | May 6, 2026 |
| | CVE-2014-3346 | Cisco | medium | 6.3 | 0.5%
| | The web framework in Cisco Transport Gateway for Smart Call Home (aka TG-SCH or Transport Gateway In… | Aug 29, 2014 | May 6, 2026 |
| | CVE-2014-3349 | Cisco | medium | 4.0 | 0.3%
| | Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not validate file types during … | Aug 29, 2014 | May 6, 2026 |
| | CVE-2014-3350 | Cisco | medium | 4.0 | 0.3%
| | Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not properly implement URL redi… | Aug 29, 2014 | May 6, 2026 |
| | CVE-2014-3351 | Cisco | medium | 5.0 | 0.3%
| | Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not properly consider whether a… | Aug 29, 2014 | May 6, 2026 |
| | CVE-2014-2390 |  Trellix | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in the User Management module in McAfee Network Secu… | Aug 29, 2014 | May 6, 2026 |
| | CVE-2014-3352 | Cisco | medium | 4.3 | 1.0%
| | Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) 2008.3_SP9 and earlier does not prop… | Aug 30, 2014 | May 6, 2026 |
| | CVE-2014-6064 | Trellix | medium | 4.0 | 0.2%
| | The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) before 7.3.2.9 and… | Sep 2, 2014 | May 6, 2026 |
| | CVE-2012-6153 | Apache | medium | 4.3 | 1.2%
| | http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly veri… | Sep 4, 2014 | May 6, 2026 |
| | CVE-2014-3529 | Apache | medium | 4.3 | 5.2%
| | The OPC SAX setup in Apache POI before 3.10.1 allows remote attackers to read arbitrary files via an… | Sep 4, 2014 | May 6, 2026 |
| | CVE-2014-3574 | Apache | medium | 4.3 | 11.1%
| | Apache POI before 3.10.1 and 3.11.x before 3.11-beta2 allows remote attackers to cause a denial of s… | Sep 4, 2014 | May 6, 2026 |
| | CVE-2014-5711 | Microsoft | medium | 5.4 | 0.1%
| | The Microsoft Tech Companion (aka com.technet) application 1.0.6 for Android does not verify X.509 c… | Sep 9, 2014 | May 6, 2026 |
| | CVE-2014-2799 | Microsoft | critical | 9.3 | 18.1%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 10, 2014 | May 6, 2026 |
| | CVE-2014-4059 | Microsoft | critical | 9.3 | 15.8%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 10, 2014 | May 6, 2026 |
| | CVE-2014-4065 | Microsoft | critical | 9.3 | 18.1%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 10, 2014 | May 6, 2026 |
| | CVE-2014-4068 | Microsoft | medium | 5.0 | 31.1%
| | The Response Group Service in Microsoft Lync Server 2010 and 2013 and the Core Components in Lync Se… | Sep 10, 2014 | May 6, 2026 |
| | CVE-2014-4070 | Microsoft | medium | 4.3 | 18.3%
| | Cross-site scripting (XSS) vulnerability in the Web Components Server in Microsoft Lync Server 2013 … | Sep 10, 2014 | May 6, 2026 |
| | CVE-2014-4071 | Microsoft | medium | 5.0 | 31.1%
| | The Server in Microsoft Lync Server 2013 allows remote attackers to cause a denial of service (NULL … | Sep 10, 2014 | May 6, 2026 |
| | CVE-2014-4072 | Microsoft | medium | 5.0 | 39.6%
| | Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 does not pr… | Sep 10, 2014 | May 6, 2026 |
| | CVE-2014-4079 | Microsoft | critical | 9.3 | 15.8%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 10, 2014 | May 6, 2026 |