| | CVE-2014-2927 |  F5 | critical | 9.3 | 7.4%
| | The rsync daemon in F5 BIG-IP 11.6 before 11.6.0, 11.5.1 before HF3, 11.5.0 before HF4, 11.4.1 befor… | Oct 15, 2014 | May 6, 2026 |
| | CVE-2014-8301 |  Splunk | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 5.0.x before 5.0.10 allo… | Oct 16, 2014 | May 6, 2026 |
| | CVE-2014-8302 | Splunk | low | 3.5 | 0.2%
| | Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.1.x before 6.1.4, 6.0.… | Oct 16, 2014 | May 6, 2026 |
| | CVE-2014-8303 | Splunk | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.1.x before 6.1.4 and 6… | Oct 16, 2014 | May 6, 2026 |
| | CVE-2014-2647 |  HPE | medium | 4.3 | 2.1%
| | Cross-site scripting (XSS) vulnerability in HP Operations Agent in HP Operations Manager (formerly O… | Oct 19, 2014 | May 6, 2026 |
| | CVE-2014-3368 |  Cisco | high | 7.8 | 0.5%
| | Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.2 allow remote… | Oct 19, 2014 | May 6, 2026 |
| | CVE-2014-3369 | Cisco | high | 7.1 | 0.7%
| | The SIP IX implementation in Cisco TelePresence Video Communication Server (VCS) and Expressway Soft… | Oct 19, 2014 | May 6, 2026 |
| | CVE-2014-3370 | Cisco | high | 7.1 | 0.7%
| | Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.1.1 allow remo… | Oct 19, 2014 | May 6, 2026 |
| | CVE-2014-3397 | Cisco | high | 7.8 | 5.9%
| | The network stack in Cisco TelePresence MCU Software before 4.3(2.30) allows remote attackers to cau… | Oct 19, 2014 | May 6, 2026 |
| | CVE-2014-3406 | Cisco | high | 7.1 | 0.3%
| | Race condition in the IP logging feature in Cisco Intrusion Prevention System (IPS) Software 7.1(7)E… | Oct 19, 2014 | May 6, 2026 |
| | CVE-2014-3408 | Cisco | medium | 6.8 | 0.6%
| | Cross-site scripting (XSS) vulnerability in the web framework in Cisco Prime Optical 10 allows remot… | Oct 19, 2014 | May 6, 2026 |
| | CVE-2014-7874 | HPE | medium | 6.8 | 0.2%
| | Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 3.2.3 … | Oct 19, 2014 | May 6, 2026 |
| | CVE-2014-7280 |  Tenable | medium | 4.3 | 8.4%
| | Cross-site scripting (XSS) vulnerability in the Web UI before 2.3.4 Build #85 for Tenable Nessus 5.x… | Oct 21, 2014 | May 6, 2026 |
| | CVE-2014-8380 | Splunk | medium | 4.3 | 3.3%
| | Cross-site scripting (XSS) vulnerability in Splunk 6.1.1 allows remote attackers to inject arbitrary… | Oct 21, 2014 | May 6, 2026 |
| | CVE-2013-7408 | F5 | high | 7.5 | 0.6%
| | F5 BIG-IP Analytics 11.x before 11.4.0 uses a predictable session cookie, which makes it easier for … | Oct 26, 2014 | May 6, 2026 |
| | CVE-2014-4023 | F5 | medium | 4.3 | 0.4%
| | Cross-site scripting (XSS) vulnerability in tmui/dashboard/echo.jsp in the Configuration utility in … | Oct 28, 2014 | May 6, 2026 |
| | CVE-2014-8518 |  Trellix | low | 2.1 | 0.0%
| | The (1) Removable Media and (2) CD and DVD encryption offsite access options (formerly Endpoint Encr… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8519 | Trellix | low | 2.1 | 0.1%
| | Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local us… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8520 | Trellix | medium | 5.0 | 0.5%
| | McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to obtain sensitive in… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8521 | Trellix | low | 3.5 | 0.1%
| | Cross-site scripting (XSS) vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.3 al… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8522 | Trellix | high | 7.5 | 0.6%
| | The MySQL database in McAfee Network Data Loss Prevention (NDLP) before 9.3 does not require a passw… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8523 | Trellix | medium | 6.8 | 0.2%
| | Cross-site request forgery (CSRF) vulnerability in McAfee Network Data Loss Prevention (NDLP) before… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8524 | Trellix | medium | 5.0 | 0.4%
| | McAfee Network Data Loss Prevention (NDLP) before 9.3 does not disable the autocomplete setting for … | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8525 | Trellix | medium | 5.0 | 0.5%
| | McAfee Network Data Loss Prevention (NDLP) before 9.3 does not include the HTTPOnly flag in a Set-Co… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8526 | Trellix | low | 2.1 | 0.1%
| | McAfee Network Data Loss Prevention (NDLP) before 9.3 allows local users to obtain sensitive informa… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8527 | Trellix | low | 3.6 | 0.1%
| | McAfee Network Data Loss Prevention (NDLP) before 9.3 allows local users to obtain sensitive informa… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8528 | Trellix | low | 2.1 | 0.1%
| | McAfee Network Data Loss Prevention (NDLP) before 9.3 logs session IDs, which allows local users to … | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8529 | Trellix | low | 2.1 | 0.1%
| | McAfee Network Data Loss Prevention (NDLP) before 9.3 stores the SSH key in cleartext, which allows … | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8530 | Trellix | high | 7.5 | 0.6%
| | Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote att… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8531 | Trellix | medium | 6.5 | 4.3%
| | The TLS/SSL Server in McAfee Network Data Loss Prevention (NDLP) before 9.3 uses weak cipher algorit… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8532 | Trellix | low | 3.6 | 0.1%
| | Unspecified vulnerability in McAfee Network Data Loss Prevention before (NDLP) before 9.3 allows loc… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8533 | Trellix | high | 7.5 | 3.0%
| | McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to execute arbitrary c… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8534 | Trellix | low | 2.1 | 0.1%
| | Unspecified vulnerability in the login form in McAfee Network Data Loss Prevention (NDLP) before 9.2… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8535 | Trellix | medium | 4.6 | 0.1%
| | McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to bypass intended restri… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8536 | Trellix | low | 2.1 | 0.1%
| | McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to obtain sensitive infor… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-8537 | Trellix | low | 2.1 | 0.1%
| | McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to obtain sensitive infor… | Oct 29, 2014 | May 6, 2026 |
| | CVE-2014-3584 |  Apache | medium | 5.0 | 5.6%
| | The SamlHeaderInHandler in Apache CXF before 2.6.11, 2.7.x before 2.7.8, and 3.0.x before 3.0.1 allo… | Oct 30, 2014 | May 6, 2026 |
| | CVE-2014-3623 | Apache | medium | 5.0 | 2.5%
| | Apache WSS4J before 1.6.17 and 2.x before 2.0.2, as used in Apache CXF 2.7.x before 2.7.13 and 3.0.x… | Oct 30, 2014 | May 6, 2026 |
| | CVE-2014-3366 | Cisco | medium | 6.5 | 0.3%
| | SQL injection vulnerability in the administrative web interface in Cisco Unified Communications Mana… | Oct 31, 2014 | May 6, 2026 |
| | CVE-2014-3372 | Cisco | medium | 4.3 | 0.4%
| | Multiple cross-site scripting (XSS) vulnerabilities in the CCM reports interface in the Server in Ci… | Oct 31, 2014 | May 6, 2026 |
| | CVE-2014-3373 | Cisco | medium | 4.3 | 0.5%
| | Multiple cross-site scripting (XSS) vulnerabilities in the CCM Dialed Number Analyzer interface in t… | Oct 31, 2014 | May 6, 2026 |
| | CVE-2014-3374 | Cisco | medium | 4.3 | 0.5%
| | Multiple cross-site scripting (XSS) vulnerabilities in the CCM admin interface in the Server in Cisc… | Oct 31, 2014 | May 6, 2026 |
| | CVE-2014-3375 | Cisco | medium | 4.3 | 0.5%
| | Multiple cross-site scripting (XSS) vulnerabilities in the CCM Service interface in the Server in Ci… | Oct 31, 2014 | May 6, 2026 |
| | CVE-2014-6032 | F5 | medium | 5.5 | 2.5%
| | Multiple XML External Entity (XXE) vulnerabilities in the Configuration utility in F5 BIG-IP LTM, AS… | Nov 1, 2014 | May 6, 2026 |
| | CVE-2014-7988 | Cisco | medium | 4.0 | 0.3%
| | The Unified Messaging Service (UMS) in Cisco Unity Connection 10.5 and earlier allows remote authent… | Nov 7, 2014 | May 6, 2026 |
| | CVE-2014-4077 |  Microsoft | high | 7.8 | 50.8%
| ⚠ KEV | Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 … | Nov 11, 2014 | Apr 22, 2026 |
| | CVE-2014-4078 | Microsoft | medium | 5.1 | 13.5%
| | The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not proper… | Nov 11, 2014 | May 6, 2026 |
| | CVE-2014-4116 | Microsoft | medium | 4.3 | 12.3%
| | Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2010 SP2 allows remote a… | Nov 11, 2014 | May 6, 2026 |
| | CVE-2014-4143 | Microsoft | critical | 9.3 | 33.3%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause … | Nov 11, 2014 | May 6, 2026 |
| | CVE-2014-4149 | Microsoft | critical | 9.3 | 37.7%
| | Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 does not properly pe… | Nov 11, 2014 | May 6, 2026 |