| | CVE-2015-3293 |  Fortinet | medium | 4.0 | 0.2%
| | FortiMail 5.0.3 through 5.2.3 allows remote administrators to obtain credentials via the "diag debug… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1639 |  Microsoft | medium | 4.3 | 6.9%
| | Cross-site scripting (XSS) vulnerability in Microsoft Office for Mac 2011 allows remote attackers to… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1640 | Microsoft | medium | 4.3 | 9.0%
| | Cross-site scripting (XSS) vulnerability in Microsoft Project Server 2010 SP2 and 2013 SP1 allows re… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1641 | Microsoft | high | 7.8 | 93.6%
| ⚠ KEV | Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for M… | Apr 14, 2015 | Apr 22, 2026 |
| | CVE-2015-1646 | Microsoft | medium | 4.3 | 28.1%
| | Microsoft XML Core Services (aka MSXML) 3.0 allows remote attackers to bypass the Same Origin Policy… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1648 | Microsoft | low | 2.6 | 34.8%
| | ASP.NET in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2, when the… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1649 | Microsoft | critical | 9.3 | 54.8%
| | Use-after-free vulnerability in Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word Viewer… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1650 | Microsoft | critical | 9.3 | 60.8%
| | Use-after-free vulnerability in Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 S… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1651 | Microsoft | critical | 9.3 | 53.1%
| | Use-after-free vulnerability in Microsoft Word 2007 SP3, Word Viewer, and Office Compatibility Pack … | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1652 | Microsoft | critical | 9.3 | 19.6%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause … | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1653 | Microsoft | medium | 4.3 | 9.9%
| | Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2013 SP1 and SharePoint … | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1657 | Microsoft | critical | 9.3 | 27.4%
| | Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause … | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1659 | Microsoft | critical | 9.3 | 19.6%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1660 | Microsoft | critical | 9.3 | 29.5%
| | Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1661 | Microsoft | medium | 4.3 | 18.8%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to bypass the ASLR protection mecha… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1662 | Microsoft | critical | 9.3 | 29.5%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1665 | Microsoft | critical | 9.3 | 19.6%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1666 | Microsoft | critical | 9.3 | 29.5%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause … | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1667 | Microsoft | critical | 9.3 | 29.5%
| | Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause … | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-1668 | Microsoft | critical | 9.3 | 19.6%
| | Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a d… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-2112 |  HPE | critical | 9.0 | 0.6%
| | Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-2113 | HPE | critical | 10.0 | 28.2%
| | Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-2114 | HPE | medium | 6.8 | 0.6%
| | HP Support Solution Framework before 11.51.0049 allows remote attackers to download an arbitrary pro… | Apr 14, 2015 | May 6, 2026 |
| | CVE-2015-0693 |  Cisco | high | 7.2 | 0.1%
| | Cisco Web Security Appliance (WSA) devices with software 8.5.0-ise-147 do not properly restrict use … | Apr 15, 2015 | May 6, 2026 |
| | CVE-2015-0696 | Cisco | medium | 4.3 | 0.4%
| | Cross-site scripting (XSS) vulnerability in the login page in Cisco TC Software before 7.1.0 on Cisc… | Apr 15, 2015 | May 6, 2026 |
| | CVE-2015-0698 | Cisco | medium | 4.3 | 0.4%
| | Multiple cross-site scripting (XSS) vulnerabilities in filter search forms in admin web pages on Cis… | Apr 15, 2015 | May 6, 2026 |
| | CVE-2015-0699 | Cisco | medium | 5.0 | 0.3%
| | SQL injection vulnerability in the Interactive Voice Response (IVR) component in Cisco Unified Commu… | Apr 15, 2015 | May 6, 2026 |
| | CVE-2015-0691 | Cisco | critical | 9.3 | 0.9%
| | A certain Cisco JAR file, as distributed in Cache Cleaner in Cisco Secure Desktop (CSD), allows remo… | Apr 17, 2015 | May 6, 2026 |
| | CVE-2015-0700 | Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in the Dashboard page in the monitoring-and-report s… | Apr 17, 2015 | May 6, 2026 |
| | CVE-2015-0702 | Cisco | critical | 9.0 | 1.3%
| | Unrestricted file upload vulnerability in the Custom Prompts upload implementation in Cisco Unified … | Apr 21, 2015 | May 6, 2026 |
| | CVE-2015-0703 | Cisco | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in the administrative web interface in Cisco Unified Meetin… | Apr 21, 2015 | May 6, 2026 |
| | CVE-2014-8111 |  Apache | medium | 5.0 | 3.7%
| | Apache Tomcat Connectors (mod_jk) before 1.2.41 ignores JkUnmount rules for subtrees of previous JkM… | Apr 21, 2015 | May 6, 2026 |
| | CVE-2015-0704 | Cisco | medium | 6.8 | 0.1%
| | Multiple cross-site request forgery (CSRF) vulnerabilities in API features in Cisco Unified MeetingP… | Apr 22, 2015 | May 6, 2026 |
| | CVE-2015-0705 | Cisco | medium | 6.8 | 0.4%
| | Cross-site request forgery (CSRF) vulnerability in the SOAP API endpoints of the web-services direct… | Apr 22, 2015 | May 6, 2026 |
| | CVE-2015-0706 | Cisco | medium | 5.8 | 0.1%
| | Open redirect vulnerability in Cisco FireSIGHT System Software 5.3.1.1, 5.3.1.2, and 6.0.0 in FireSI… | Apr 23, 2015 | May 6, 2026 |
| | CVE-2015-0707 | Cisco | low | 3.5 | 0.2%
| | Cross-site scripting (XSS) vulnerability in Cisco FireSIGHT System Software 5.3.1.1 and 6.0.0 in Fir… | Apr 23, 2015 | May 6, 2026 |
| | CVE-2015-3143 | HPE | medium | 5.0 | 3.5%
| | cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remot… | Apr 24, 2015 | May 6, 2026 |
| | CVE-2015-3145 | HPE | high | 7.5 | 63.7%
| | The sanitize_cookie_path function in cURL and libcurl 7.31.0 through 7.41.0 does not properly calcul… | Apr 24, 2015 | May 6, 2026 |
| | CVE-2015-3148 | HPE | medium | 5.0 | 1.7%
| | cURL and libcurl 7.10.6 through 7.41.0 do not properly re-use authenticated Negotiate connections, w… | Apr 24, 2015 | May 6, 2026 |
| | CVE-2015-2116 | HPE | critical | 9.0 | 0.8%
| | Unspecified vulnerability in HP Storage Data Protector 7.x before 7.03 build 107 allows remote authe… | Apr 27, 2015 | May 6, 2026 |
| | CVE-2015-2117 | HPE | high | 7.5 | 10.2%
| | HP TippingPoint Security Management System (SMS) and TippingPoint Virtual Security Management System… | Apr 27, 2015 | May 6, 2026 |
| | CVE-2015-2115 | HPE | low | 2.7 | 0.1%
| | Unspecified vulnerability in HP Capture and Route Software (HPCR) 1.3 before Patch 7, 1.3 FP1 before… | Apr 27, 2015 | May 6, 2026 |
| | CVE-2015-1774 | Apache | medium | 6.8 | 9.7%
| | The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2… | Apr 28, 2015 | May 6, 2026 |
| | CVE-2015-0714 | Cisco | medium | 4.3 | 0.3%
| | Multiple cross-site scripting (XSS) vulnerabilities in Cisco Finesse Server 10.0(1), 10.5(1), 10.6(1… | May 2, 2015 | May 6, 2026 |
| | CVE-2015-0701 | Cisco | critical | 10.0 | 1.1%
| | Cisco UCS Central Software before 1.3(1a) allows remote attackers to execute arbitrary commands via … | May 7, 2015 | May 6, 2026 |
| | CVE-2015-0715 | Cisco | medium | 6.5 | 0.3%
| | SQL injection vulnerability in the administrative web interface in Cisco Unified Communications Mana… | May 7, 2015 | May 6, 2026 |
| | CVE-2015-0716 | Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in the CUCReports page in Cisco Unity Connection 11.… | May 7, 2015 | May 6, 2026 |
| | CVE-2014-8619 | Fortinet | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in the autolearn configuration page in Fortinet FortiWeb 5.… | May 12, 2015 | May 6, 2026 |
| | CVE-2014-9326 |  F5 | medium | 4.3 | 0.2%
| | The automatic signature update functionality in the (1) Phone Home feature in F5 BIG-IP LTM, AAM, AF… | May 12, 2015 | May 6, 2026 |
| | CVE-2015-1658 | Microsoft | critical | 9.3 | 18.5%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | May 13, 2015 | May 6, 2026 |