| | CVE-2016-0193 |  Microsoft | high | 7.5 | 18.3%
| | The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or … | May 11, 2016 | May 6, 2026 |
| | CVE-2016-0194 | Microsoft | medium | 5.3 | 0.9%
| | Microsoft Internet Explorer 10 and 11 allows remote attackers to bypass file permissions and obtain … | May 11, 2016 | May 6, 2026 |
| | CVE-2016-0198 | Microsoft | high | 7.8 | 24.1%
| | Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016,… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1096 | Microsoft | high | 7.5 | 39.7%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1097 | Microsoft | high | 7.5 | 7.0%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1098 | Microsoft | high | 7.5 | 15.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1099 | Microsoft | high | 7.5 | 15.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1100 | Microsoft | high | 7.5 | 15.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1101 | Microsoft | high | 7.5 | 53.1%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1102 | Microsoft | high | 7.5 | 39.7%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1103 | Microsoft | high | 7.5 | 53.1%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1104 | Microsoft | high | 7.5 | 39.7%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1105 | Microsoft | high | 7.5 | 53.1%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1106 | Microsoft | high | 7.5 | 57.6%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1107 | Microsoft | high | 7.5 | 7.0%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1108 | Microsoft | high | 7.5 | 7.0%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1109 | Microsoft | high | 7.5 | 7.0%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1110 | Microsoft | high | 7.5 | 7.0%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4108 | Microsoft | high | 7.5 | 65.6%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4109 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4110 | Microsoft | high | 7.5 | 7.0%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4111 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4112 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4113 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4114 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4115 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4116 | Microsoft | high | 7.5 | 6.1%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-3710 |  HPE | high | 8.8 | 0.1%
| | The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which a… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-1393 |  Cisco | high | 7.1 | 0.1%
| | SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 allows … | May 12, 2016 | May 6, 2026 |
| | CVE-2016-2099 |  Apache | critical | 9.8 | 2.2%
| | Use-after-free vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 3.1.3 and earlier… | May 13, 2016 | May 6, 2026 |
| | CVE-2015-8099 |  F5 | medium | 5.9 | 1.0%
| | F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 11.4.1 HF10,… | May 13, 2016 | May 6, 2026 |
| | CVE-2016-1399 | Cisco | high | 7.5 | 1.1%
| | The packet-processing microcode in Cisco IOS 15.2(2)EA, 15.2(2)EA1, 15.2(2)EA2, and 15.2(4)EA on Ind… | May 14, 2016 | May 6, 2026 |
| | CVE-2016-2015 | HPE | high | 7.1 | 0.1%
| | HPE System Management Homepage before 7.5.5 allows local users to obtain sensitive information or mo… | May 14, 2016 | May 6, 2026 |
| | CVE-2016-2016 | HPE | medium | 5.5 | 0.1%
| | Base-VxFS-50 B.05.00.01 through B.05.00.02, Base-VxFS-501 B.05.01.0 through B.05.01.03, and Base-VxF… | May 14, 2016 | May 6, 2026 |
| | CVE-2016-3627 | HPE | high | 7.5 | 0.2%
| | The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode… | May 17, 2016 | May 6, 2026 |
| | CVE-2016-3705 | HPE | high | 7.5 | 1.0%
| | The (1) xmlParserEntityCheck and (2) xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 … | May 17, 2016 | May 6, 2026 |
| | CVE-2016-0707 | Apache | low | 3.3 | 0.1%
| | The agent in Apache Ambari before 2.1.2 uses weak permissions for the (1) /var/lib/ambari-agent/data… | May 18, 2016 | May 6, 2026 |
| | CVE-2016-0731 | Apache | medium | 4.9 | 0.2%
| | The File Browser View in Apache Ambari before 2.2.1 allows remote authenticated administrators to re… | May 18, 2016 | May 6, 2026 |
| | CVE-2016-2077 |  VMware | critical | 9.8 | 0.6%
| | VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly acce… | May 18, 2016 | May 6, 2026 |
| | CVE-2016-1833 |  Trellix | medium | 5.5 | 1.2%
| | The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before… | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1834 | Trellix | high | 7.8 | 2.4%
| | Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS … | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1836 | Trellix | medium | 5.5 | 1.2%
| | Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used … | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1837 | Trellix | medium | 5.5 | 0.8%
| | Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiter… | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1838 | Trellix | medium | 5.5 | 10.7%
| | The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before … | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1839 | Trellix | medium | 5.5 | 10.8%
| | The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X befor… | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1840 | Trellix | high | 7.8 | 2.1%
| | Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used i… | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1401 | Cisco | medium | 6.1 | 0.3%
| | Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified Computing Syst… | May 21, 2016 | May 6, 2026 |
| | CVE-2016-1402 | Cisco | high | 7.5 | 1.1%
| | The Active Directory (AD) integration component in Cisco Identity Service Engine (ISE) before 1.2.0.… | May 21, 2016 | May 6, 2026 |
| | CVE-2016-4543 | HPE | critical | 9.8 | 5.4%
| | The exif_process_IFD_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, … | May 22, 2016 | May 6, 2026 |
| | CVE-2016-1380 | Cisco | high | 7.5 | 0.6%
| | Cisco AsyncOS 8.0 before 8.0.6-119 on Web Security Appliance (WSA) devices allows remote attackers t… | May 25, 2016 | May 6, 2026 |