| | CVE-2017-11878 |  Microsoft | high | 7.8 | 9.7%
| | Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Servi… | Nov 15, 2017 | May 13, 2026 |
| | CVE-2017-11879 | Microsoft | high | 8.8 | 9.8%
| | ASP.NET Core 2.0 allows an attacker to steal log-in session information such as cookies or authentic… | Nov 15, 2017 | May 13, 2026 |
| | CVE-2017-11882 | Microsoft | high | 7.8 | 94.4%
| ⚠ KEV | Microsoft Office 2007 Service Pack 3, Microsoft Office 2010 Service Pack 2, Microsoft Office 2013 Se… | Nov 15, 2017 | Apr 22, 2026 |
| | CVE-2017-11883 | Microsoft | high | 7.5 | 34.4%
| | .NET Core 1.0, 1.1, and 2.0 allow an unauthenticated attacker to remotely cause a denial of service … | Nov 15, 2017 | May 13, 2026 |
| | CVE-2017-11884 | Microsoft | high | 7.8 | 49.9%
| | Microsoft Excel 2016 Click-to-Run (C2R) allows an attacker to run arbitrary code in the context of t… | Nov 15, 2017 | May 13, 2026 |
| | CVE-2017-8700 | Microsoft | high | 7.5 | 7.4%
| | ASP.NET Core 1.0, 1.1, and 2.0 allow an attacker to bypass Cross-origin Resource Sharing (CORS) conf… | Nov 15, 2017 | May 13, 2026 |
| | CVE-2017-12633 |  Apache | critical | 9.8 | 3.4%
| | The camel-hessian component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable… | Nov 15, 2017 | May 13, 2026 |
| | CVE-2017-12634 | Apache | critical | 9.8 | 6.5%
| | The camel-castor component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable … | Nov 15, 2017 | May 13, 2026 |
| | CVE-2014-0219 | Apache | medium | 5.5 | 0.1%
| | Apache Karaf before 4.0.10 enables a shutdown port on the loopback interface, which allows local use… | Nov 15, 2017 | May 13, 2026 |
| | CVE-2017-12290 |  Cisco | medium | 6.1 | 0.2%
| | Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-base… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12291 | Cisco | medium | 6.1 | 0.2%
| | Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-base… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12292 | Cisco | medium | 6.1 | 0.2%
| | Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-base… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12300 | Cisco | medium | 5.8 | 0.2%
| | A vulnerability in the SNORT detection engine of Cisco Firepower System Software could allow an unau… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12302 | Cisco | medium | 4.3 | 0.2%
| | A vulnerability in the Cisco Unified Communications Manager SQL database interface could allow an au… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12306 | Cisco | medium | 4.4 | 0.0%
| | A vulnerability in the upgrade process of Cisco Spark Board could allow an authenticated, local atta… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12311 | Cisco | medium | 5.8 | 0.8%
| | A vulnerability in the H.264 decoder function of Cisco Meeting Server could allow an unauthenticated… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12312 | Cisco | medium | 6.7 | 0.1%
| | An untrusted search path (aka DLL Preloading) vulnerability in the Cisco Immunet antimalware install… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12313 | Cisco | medium | 6.7 | 0.1%
| | An untrusted search path (aka DLL Preload) vulnerability in the Cisco Network Academy Packet Tracer … | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12314 | Cisco | high | 7.8 | 0.1%
| | A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local at… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12316 | Cisco | high | 7.5 | 1.2%
| | A vulnerability in the Guest Portal login page of Cisco Identity Services Engine (ISE) could allow a… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12320 | Cisco | medium | 6.1 | 0.2%
| | Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-base… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12321 | Cisco | medium | 6.1 | 0.2%
| | Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-base… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12322 | Cisco | medium | 6.1 | 0.2%
| | Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-base… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12323 | Cisco | medium | 6.1 | 0.2%
| | Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-base… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-12337 | Cisco | critical | 9.8 | 13.2%
| | A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Op… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-4930 |  VMware | medium | 5.4 | 0.3%
| | VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticate… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-4931 | VMware | high | 7.8 | 0.2%
| | VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticate… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-4932 | VMware | high | 7.8 | 0.1%
| | VMware AirWatch Launcher for Android prior to 3.2.2 contains a vulnerability that could allow an esc… | Nov 16, 2017 | May 13, 2026 |
| | CVE-2017-4927 | VMware | high | 7.5 | 1.4%
| | VMware vCenter Server (6.5 prior to 6.5 U1 and 6.0 prior to 6.0 U3c) does not correctly handle speci… | Nov 17, 2017 | May 13, 2026 |
| | CVE-2017-4928 | VMware | high | 7.5 | 0.2%
| | The flash-based vSphere Web Client (6.0 prior to 6.0 U3c and 5.5 prior to 5.5 U3f) i.e. not the new … | Nov 17, 2017 | May 13, 2026 |
| | CVE-2017-4929 | VMware | medium | 6.1 | 0.2%
| | VMware NSX Edge (6.2.x before 6.2.9 and 6.3.x before 6.3.5) contains a moderate Cross-Site Scripting… | Nov 17, 2017 | May 13, 2026 |
| | CVE-2017-4934 | VMware | high | 8.8 | 0.1%
| | VMware Workstation (12.x before 12.5.8) and Fusion (8.x before 8.5.9) contain a heap buffer-overflow… | Nov 17, 2017 | May 13, 2026 |
| | CVE-2017-4935 | VMware | high | 7.8 | 0.1%
| | VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) conta… | Nov 17, 2017 | May 13, 2026 |
| | CVE-2017-4936 | VMware | high | 7.8 | 0.1%
| | VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) conta… | Nov 17, 2017 | May 13, 2026 |
| | CVE-2017-4937 | VMware | high | 7.8 | 0.1%
| | VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) conta… | Nov 17, 2017 | May 13, 2026 |
| | CVE-2017-4938 | VMware | medium | 6.5 | 0.0%
| | VMware Workstation (12.x before 12.5.8) and Fusion (8.x before 8.5.9) contain a guest RPC NULL point… | Nov 17, 2017 | May 13, 2026 |
| | CVE-2017-6168 |  F5 | high | 7.4 | 76.2%
| | On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or … | Nov 17, 2017 | May 13, 2026 |
| | CVE-2017-4939 | VMware | high | 7.8 | 0.2%
| | VMware Workstation (12.x before 12.5.8) installer contains a DLL hijacking issue that exists due to … | Nov 17, 2017 | May 13, 2026 |
| | CVE-2016-6804 | Apache | high | 7.8 | 0.3%
| | The Apache OpenOffice installer (versions prior to 4.1.3, including some branded as OpenOffice.org) … | Nov 20, 2017 | May 13, 2026 |
| | CVE-2017-9806 | Apache | high | 7.8 | 1.8%
| | A vulnerability in the OpenOffice Writer DOC file parser before 4.1.4, and specifically in the WW8Fo… | Nov 20, 2017 | May 13, 2026 |
| | CVE-2017-12607 | Apache | high | 7.8 | 0.6%
| | A vulnerability in OpenOffice's PPT file parser before 4.1.4, and specifically in PPTStyleSheet, all… | Nov 20, 2017 | May 13, 2026 |
| | CVE-2017-12608 | Apache | high | 7.8 | 1.2%
| | A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in Import… | Nov 20, 2017 | May 13, 2026 |
| | CVE-2017-3157 | Apache | medium | 5.5 | 0.8%
| | By exploiting the way Apache OpenOffice before 4.1.4 renders embedded objects, an attacker could cra… | Nov 20, 2017 | May 13, 2026 |
| | CVE-2017-6166 | F5 | medium | 5.9 | 1.2%
| | In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0… | Nov 22, 2017 | May 13, 2026 |
| | CVE-2017-7736 |  Fortinet | medium | 5.4 | 0.2%
| | A stored Cross-site Scripting (XSS) vulnerability in Fortinet FortiWeb webUI Certificate View page i… | Nov 22, 2017 | May 13, 2026 |
| | CVE-2017-4995 | VMware | high | 8.1 | 0.8%
| | An issue was discovered in Pivotal Spring Security 4.2.0.RELEASE through 4.2.2.RELEASE, and Spring S… | Nov 27, 2017 | May 13, 2026 |
| | CVE-2017-8044 | VMware | medium | 6.1 | 0.2%
| | In Pivotal Single Sign-On for PCF (1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3),… | Nov 27, 2017 | May 13, 2026 |
| | CVE-2017-14189 | Fortinet | critical | 9.8 | 0.5%
| | An improper access control vulnerability in Fortinet FortiWebManager 5.8.0 allows anyone that can ac… | Nov 29, 2017 | May 13, 2026 |
| | CVE-2017-17067 |  Splunk | critical | 9.8 | 3.3%
| | Splunk Web in Splunk Enterprise 7.0.x before 7.0.0.1, 6.6.x before 6.6.3.2, 6.5.x before 6.5.6, 6.4.… | Nov 30, 2017 | May 13, 2026 |
| | CVE-2017-12297 | Cisco | medium | 5.0 | 0.2%
| | A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initi… | Nov 30, 2017 | May 13, 2026 |