| | CVE-2014-2640 |  HPE | medium | 4.3 | 2.1%
| | Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 7.4 allows re… | Oct 2, 2014 | May 6, 2026 |
| | CVE-2014-2641 | HPE | medium | 6.0 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 7.4 al… | Oct 2, 2014 | May 6, 2026 |
| | CVE-2014-2642 | HPE | medium | 4.3 | 0.5%
| | HP System Management Homepage (SMH) before 7.4 allows remote attackers to conduct clickjacking attac… | Oct 2, 2014 | May 6, 2026 |
| | CVE-2014-2643 | HPE | medium | 6.5 | 0.3%
| | Unspecified vulnerability in HP Systems Insight Manager (SIM) before 7.4 allows remote authenticated… | Oct 5, 2014 | May 6, 2026 |
| | CVE-2014-2645 | HPE | medium | 4.3 | 0.5%
| | HP Systems Insight Manager (SIM) before 7.4 allows remote attackers to conduct clickjacking attacks … | Oct 5, 2014 | May 6, 2026 |
| | CVE-2014-3400 |  Cisco | medium | 4.0 | 0.2%
| | Cisco WebEx Meetings Server allows remote authenticated users to obtain sensitive information by rea… | Oct 5, 2014 | May 6, 2026 |
| | CVE-2014-2644 | HPE | medium | 4.3 | 0.7%
| | Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 7.4 allows remot… | Oct 6, 2014 | May 6, 2026 |
| | CVE-2014-0074 |  Apache | high | 7.5 | 0.3%
| | Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthenticated bind enabled, allows r… | Oct 6, 2014 | May 6, 2026 |
| | CVE-2014-3399 | Cisco | medium | 5.5 | 0.1%
| | The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.2(.2.4) and earlier… | Oct 7, 2014 | May 6, 2026 |
| | CVE-2014-2635 | HPE | high | 7.5 | 4.8%
| | Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-2636 | HPE | high | 7.5 | 4.8%
| | Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-2637 | HPE | high | 7.5 | 4.8%
| | Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-2638 | HPE | high | 7.5 | 4.8%
| | Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-2646 | HPE | high | 7.2 | 0.1%
| | Unspecified vulnerability in HP Network Automation 9.10 and 9.20 allows local users to bypass intend… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-2648 | HPE | critical | 10.0 | 22.3%
| | Unspecified vulnerability in HP Operations Manager 9.10 and 9.11 on UNIX allows remote attackers to … | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-2649 | HPE | high | 7.5 | 3.6%
| | Unspecified vulnerability in HP Operations Manager 9.20 on UNIX allows remote attackers to execute a… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3147 |  Splunk | low | 3.5 | 0.2%
| | Cross-site scripting (XSS) vulnerability in the auto-complete feature in Splunk Enterprise before 6.… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-4661 | HPE | medium | 4.3 | 1.4%
| | Cross-site scripting (XSS) vulnerability in HP Records Manager before 7.3.5 and 8.x before 8.1 Patch… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3382 | Cisco | high | 7.8 | 0.5%
| | The SQL*Net inspection engine in Cisco ASA Software 7.2 before 7.2(5.13), 8.2 before 8.2(5.50), 8.3 … | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3383 | Cisco | high | 7.8 | 0.4%
| | The IKE implementation in the VPN component in Cisco ASA Software 9.1 before 9.1(5.1) allows remote … | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3384 | Cisco | high | 7.8 | 0.2%
| | The IKEv2 implementation in Cisco ASA Software 8.4 before 8.4(7.15), 8.6 before 8.6(1.14), 9.0 befor… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3385 | Cisco | high | 7.8 | 0.3%
| | Race condition in the Health and Performance Monitoring (HPM) for ASDM feature in Cisco ASA Software… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3386 | Cisco | high | 7.8 | 0.4%
| | The GPRS Tunneling Protocol (GTP) inspection engine in Cisco ASA Software 8.2 before 8.2(5.51), 8.4 … | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3387 | Cisco | high | 7.8 | 0.4%
| | The SunRPC inspection engine in Cisco ASA Software 7.2 before 7.2(5.14), 8.2 before 8.2(5.51), 8.3 b… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3388 | Cisco | high | 7.8 | 0.4%
| | The DNS inspection engine in Cisco ASA Software 9.0 before 9.0(4.13), 9.1 before 9.1(5.7), and 9.2 b… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3389 | Cisco | critical | 9.0 | 0.2%
| | The VPN implementation in Cisco ASA Software 7.2 before 7.2(5.15), 8.2 before 8.2(5.51), 8.3 before … | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3390 | Cisco | medium | 6.8 | 0.3%
| | The Virtual Network Management Center (VNMC) policy implementation in Cisco ASA Software 8.7 before … | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3391 | Cisco | medium | 6.8 | 0.1%
| | Untrusted search path vulnerability in Cisco ASA Software 8.x before 8.4(3), 8.5, and 8.7 before 8.7… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3394 | Cisco | medium | 5.0 | 0.1%
| | The Smart Call Home (SCH) implementation in Cisco ASA Software 8.2 before 8.2(5.50), 8.4 before 8.4(… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3402 | Cisco | medium | 5.0 | 0.5%
| | The authentication-manager process in the web framework in Cisco Intrusion Prevention System (IPS) 7… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-3581 | Apache | medium | 5.0 | 4.8%
| | The cache_merge_headers_out function in modules/cache/cache_util.c in the mod_cache module in the Ap… | Oct 10, 2014 | May 6, 2026 |
| | CVE-2014-4073 |  Microsoft | critical | 10.0 | 30.1%
| | Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 processes unverified data dur… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4075 | Microsoft | medium | 4.3 | 18.6%
| | Cross-site scripting (XSS) vulnerability in System.Web.Mvc.dll in Microsoft ASP.NET Model View Contr… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4117 | Microsoft | critical | 9.3 | 32.0%
| | Microsoft Office 2007 SP3, Word 2007 SP3, Office 2010 SP1 and SP2, Word 2010 SP1 and SP2, Office for… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4121 | Microsoft | critical | 10.0 | 42.5%
| | Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 does not properly parse inter… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4122 | Microsoft | medium | 4.3 | 41.1%
| | Microsoft .NET Framework 2.0 SP2, 3.5, and 3.5.1 omits the ASLR protection mechanism, which allows r… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4123 | Microsoft | high | 8.8 | 53.6%
| ⚠ KEV | Microsoft Internet Explorer 7 through 11 allows remote attackers to gain privileges via a crafted we… | Oct 15, 2014 | Apr 21, 2026 |
| | CVE-2014-4124 | Microsoft | medium | 6.8 | 8.4%
| | Microsoft Internet Explorer 7 through 11 allows remote attackers to gain privileges via a crafted we… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4126 | Microsoft | critical | 9.3 | 15.7%
| | Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a d… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4127 | Microsoft | critical | 9.3 | 16.3%
| | Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause … | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4128 | Microsoft | critical | 9.3 | 14.1%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause … | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4129 | Microsoft | critical | 9.3 | 20.8%
| | Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4130 | Microsoft | critical | 9.3 | 19.3%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4132 | Microsoft | critical | 9.3 | 14.1%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4133 | Microsoft | critical | 9.3 | 15.8%
| | Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code or cause a den… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4134 | Microsoft | critical | 9.3 | 16.3%
| | Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code or cause a… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4137 | Microsoft | critical | 9.3 | 14.2%
| | Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code or cause a den… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4138 | Microsoft | critical | 9.3 | 22.3%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4140 | Microsoft | medium | 4.3 | 15.1%
| | Microsoft Internet Explorer 8 through 11 allows remote attackers to bypass the ASLR protection mecha… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-4141 | Microsoft | critical | 9.3 | 20.5%
| | Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause … | Oct 15, 2014 | May 6, 2026 |