| | CVE-2008-3698 |  VMware | high | 7.2 | 0.1%
| | Unspecified vulnerability in the OpenProcess function in VMware Workstation 5.5.x before 5.5.8 build… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-3697 | VMware | medium | 5.0 | 3.2%
| | An unspecified ISAPI extension in VMware Server before 1.0.7 build 108231 allows remote attackers to… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-3696 | VMware | critical | 10.0 | 1.7%
| | Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 buil… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-3695 | VMware | critical | 10.0 | 1.2%
| | Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 buil… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-3694 | VMware | critical | 10.0 | 1.2%
| | Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 buil… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-3693 | VMware | critical | 10.0 | 1.2%
| | Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 buil… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-3692 | VMware | critical | 10.0 | 1.2%
| | Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 buil… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-3691 | VMware | critical | 10.0 | 1.6%
| | Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 buil… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-2101 | VMware | low | 2.1 | 0.1%
| | The VMware Consolidated Backup (VCB) command-line utilities in VMware ESX 3.0.1 through 3.0.3 and ES… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-3537 |  HPE | high | 7.8 | 4.7%
| | Unspecified vulnerability in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-3536 | HPE | high | 7.8 | 4.7%
| | Unspecified vulnerability in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and… | Sep 3, 2008 | Apr 23, 2026 |
| | CVE-2008-2441 |  Cisco | high | 7.5 | 3.2%
| | Cisco Secure ACS 3.x before 3.3(4) Build 12 patch 7, 4.0.x, 4.1.x before 4.1(4) Build 13 Patch 11, a… | Sep 4, 2008 | Apr 23, 2026 |
| | CVE-2008-3940 | HPE | medium | 4.4 | 0.1%
| | Format string vulnerability in the finger client in HP TCP/IP Services for OpenVMS 5.x allows local … | Sep 5, 2008 | Apr 23, 2026 |
| | CVE-2008-3946 | HPE | medium | 4.9 | 0.1%
| | The finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to read arbitrary files v… | Sep 5, 2008 | Apr 23, 2026 |
| | CVE-2007-5348 |  Microsoft | critical | 9.3 | 78.9%
| | Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 S… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-2253 | Microsoft | critical | 9.3 | 49.7%
| | Unspecified vulnerability in Microsoft Windows Media Player 11 allows remote attackers to execute ar… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3007 | Microsoft | critical | 9.3 | 59.1%
| | Argument injection vulnerability in a URI handler in Microsoft Office XP SP3, 2003 SP2 and SP3, 2007… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3008 | Microsoft | critical | 9.3 | 81.1%
| | Stack-based buffer overflow in the WMEncProfileManager ActiveX control in wmex.dll in Microsoft Wind… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3012 | Microsoft | critical | 9.3 | 68.4%
| | gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 an… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3013 | Microsoft | critical | 9.3 | 67.4%
| | gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 an… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3014 | Microsoft | critical | 9.3 | 73.8%
| | Buffer overflow in gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3,… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3015 | Microsoft | critical | 9.3 | 71.5%
| | Integer overflow in gdiplus.dll in GDI+ in Microsoft Office XP SP3, Office 2003 SP2 and SP3, 2007 Mi… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3539 | HPE | low | 2.1 | 0.1%
| | Unspecified vulnerability in HP OpenView Select Identity (HPSI) Connectors on Windows, as used in HP… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3956 | Microsoft | critical | 9.3 | 43.6%
| | orgchart.exe in Microsoft Organization Chart 2.00 allows user-assisted attackers to cause a denial o… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3957 | Microsoft | critical | 9.3 | 40.1%
| | The Microsoft Windows Image Acquisition Logger ActiveX control allows remote attackers to force the … | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-4071 | Microsoft | medium | 5.0 | 6.1%
| | A certain ActiveX control in Adobe Acrobat 9, when used with Microsoft Windows Vista and Internet Ex… | Sep 15, 2008 | Apr 23, 2026 |
| | CVE-2008-4110 | Microsoft | high | 7.6 | 38.3%
| | Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Micros… | Sep 16, 2008 | Apr 23, 2026 |
| | CVE-2008-4127 | Microsoft | medium | 4.3 | 23.6%
| | Mshtml.dll in Microsoft Internet Explorer 7 Gold 7.0.5730 and 8 Beta 8.0.6001 on Windows XP SP2 allo… | Sep 18, 2008 | Apr 23, 2026 |
| | CVE-2008-3800 | Cisco | high | 7.1 | 1.9%
| | Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 … | Sep 26, 2008 | Apr 23, 2026 |
| | CVE-2008-3801 | Cisco | high | 7.1 | 1.9%
| | Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 … | Sep 26, 2008 | Apr 23, 2026 |
| | CVE-2008-4299 | Microsoft | medium | 5.0 | 23.2%
| | A certain ActiveX control in the Microsoft Internet Authentication Service (IAS) Helper COM Componen… | Sep 29, 2008 | Apr 23, 2026 |
| | CVE-2008-4300 | Microsoft | medium | 5.0 | 14.2%
| | A certain ActiveX control in adsiis.dll in Microsoft Internet Information Services (IIS) allows remo… | Sep 29, 2008 | Apr 23, 2026 |
| | CVE-2008-4301 | Microsoft | critical | 10.0 | 26.4%
| | A certain ActiveX control in iisext.dll in Microsoft Internet Information Services (IIS) allows remo… | Sep 29, 2008 | Apr 23, 2026 |
| | CVE-2008-4326 | Microsoft | medium | 4.3 | 0.4%
| | The PMA_escapeJsString function in libraries/js_escape.lib.php in phpMyAdmin before 2.11.9.2, when I… | Sep 30, 2008 | Apr 23, 2026 |
| | CVE-2008-3542 | HPE | high | 7.8 | 2.0%
| | Unspecified vulnerability in HP Insight Diagnostics before 7.9.1.2402 allows remote attackers to rea… | Oct 2, 2008 | Apr 23, 2026 |
| | CVE-2008-4381 | Microsoft | medium | 5.0 | 30.1%
| | Microsoft Internet Explorer 7 allows remote attackers to cause a denial of service (application cras… | Oct 2, 2008 | Apr 23, 2026 |
| | CVE-2008-4278 | VMware | low | 2.1 | 0.1%
| | VMware VirtualCenter 2.5 before Update 3 build 119838 on Windows displays a user's password in clear… | Oct 6, 2008 | Apr 23, 2026 |
| | CVE-2008-4279 | VMware | medium | 6.8 | 0.1%
| | The CPU hardware emulation for 64-bit guest operating systems in VMware Workstation 6.0.x before 6.0… | Oct 6, 2008 | Apr 23, 2026 |
| | CVE-2008-3543 | HPE | high | 7.8 | 4.7%
| | Unspecified vulnerability in NFS / ONCplus B.11.31_04 and earlier on HP-UX B.11.31 allows remote att… | Oct 7, 2008 | Apr 23, 2026 |
| | CVE-2008-4482 |  Apache | high | 7.8 | 2.0%
| | The XML parser in Xerces-C++ before 3.0.0 allows context-dependent attackers to cause a denial of se… | Oct 8, 2008 | Apr 23, 2026 |
| | CVE-2008-3814 | Cisco | medium | 5.8 | 0.5%
| | Unspecified vulnerability in Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x befo… | Oct 8, 2008 | Apr 23, 2026 |
| | CVE-2008-4493 | Microsoft | medium | 6.8 | 42.1%
| | Microsoft PicturePusher ActiveX control (PipPPush.DLL 7.00.0709), as used in Microsoft Digital Image… | Oct 8, 2008 | Apr 23, 2026 |
| | CVE-2008-3271 | Apache | medium | 4.3 | 4.3%
| | Apache Tomcat 5.5.0 and 4.1.0 through 4.1.31 allows remote attackers to bypass an IP address restric… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-3544 | HPE | critical | 9.0 | 36.7%
| | Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.5… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-3545 | HPE | high | 7.8 | 2.7%
| | Unspecified vulnerability in ovtopmd in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-4411 | HPE | medium | 4.3 | 0.4%
| | Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 2.1.15.210 on… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-4542 | Cisco | low | 3.5 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco Unity 4.x before 4.2(1)ES162, 5.x before 5.0(1)ES5… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-4543 | Cisco | high | 7.1 | 1.2%
| | Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8, when using anon… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-4544 | Cisco | medium | 5.0 | 3.4%
| | Unspecified vulnerability in an unspecified Microsoft API, as used by Cisco Unity and possibly other… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-4545 | Cisco | medium | 4.0 | 0.3%
| | Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8 uses weak permis… | Oct 13, 2008 | Apr 23, 2026 |