| | CVE-2009-2625 |  Apache | medium | 5.0 | 1.2%
| | XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime Environment (JRE) in JDK and JRE… | Aug 6, 2009 | Apr 23, 2026 |
| | CVE-2009-1885 | Apache | medium | 4.3 | 14.1%
| | Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 2.7.0 and 2.8.… | Aug 11, 2009 | Apr 23, 2026 |
| | CVE-2009-2416 |  VMware | medium | 6.5 | 0.2%
| | Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and l… | Aug 11, 2009 | Apr 23, 2026 |
| | CVE-2009-1427 |  HPE | medium | 4.9 | 0.1%
| | Unspecified vulnerability in HP-UX B.11.31 allows local users to cause a denial of service (system c… | Aug 12, 2009 | Apr 23, 2026 |
| | CVE-2009-0562 |  Microsoft | critical | 9.3 | 62.2%
| | The Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web… | Aug 12, 2009 | Apr 23, 2026 |
| | CVE-2009-1534 | Microsoft | critical | 9.3 | 75.4%
| | Buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2000… | Aug 12, 2009 | Apr 23, 2026 |
| | CVE-2009-1536 | Microsoft | low | 2.6 | 53.1%
| | ASP.NET in Microsoft .NET Framework 2.0 SP1 and SP2 and 3.5 Gold and SP1, when ASP 2.0 is used in in… | Aug 12, 2009 | Apr 23, 2026 |
| | CVE-2009-2496 | Microsoft | critical | 9.3 | 55.5%
| | Heap-based buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, … | Aug 12, 2009 | Apr 23, 2026 |
| | CVE-2009-2677 | HPE | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in HP Insight Control Suite For Linux (aka ICE-LX) b… | Aug 14, 2009 | Apr 23, 2026 |
| | CVE-2009-2764 | Microsoft | medium | 5.0 | 27.3%
| | Microsoft Internet Explorer 8.0.7100.0 on Windows 7 RC on the x64 platform allows remote attackers t… | Aug 14, 2009 | Apr 23, 2026 |
| | CVE-2009-2848 | VMware | medium | 5.9 | 0.1%
| | The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear th… | Aug 18, 2009 | Apr 23, 2026 |
| | CVE-2008-7009 |  Check Point | medium | 6.9 | 0.2%
| | Buffer overflow in multiscan.exe in Check Point ZoneAlarm Security Suite 7.0.483.000 and 8.0.020.000… | Aug 19, 2009 | Apr 23, 2026 |
| | CVE-2008-7020 |  Trellix | low | 2.1 | 0.0%
| | McAfee SafeBoot Device Encryption 4 build 4750 and earlier stores pre-boot authentication passwords … | Aug 21, 2009 | Apr 23, 2026 |
| | CVE-2008-7025 | Check Point | medium | 4.3 | 2.1%
| | TrueVector in Check Point ZoneAlarm 8.0.020.000, with vsmon.exe running, allows remote HTTP proxies … | Aug 21, 2009 | Apr 23, 2026 |
| | CVE-2009-2954 | Microsoft | medium | 5.0 | 13.7%
| | Microsoft Internet Explorer 6.0.2900.2180 and earlier allows remote attackers to cause a denial of s… | Aug 24, 2009 | Apr 23, 2026 |
| | CVE-2009-2050 |  Cisco | high | 7.8 | 1.7%
| | Cisco Unified Communications Manager (aka CUCM, formerly CallManager) before 6.1(1) allows remote at… | Aug 27, 2009 | Apr 23, 2026 |
| | CVE-2009-2051 | Cisco | high | 7.8 | 1.7%
| | Cisco IOS 12.2 through 12.4 and 15.0 through 15.1, Cisco IOS XE 2.5.x and 2.6.x before 2.6.1, and Ci… | Aug 27, 2009 | Apr 23, 2026 |
| | CVE-2009-2052 | Cisco | high | 7.8 | 2.8%
| | Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x, 5.x before 5.1(3g), 6.x b… | Aug 27, 2009 | Apr 23, 2026 |
| | CVE-2009-2053 | Cisco | high | 7.8 | 1.6%
| | Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x, 5.x before 5.1(3g), 6.x b… | Aug 27, 2009 | Apr 23, 2026 |
| | CVE-2009-2054 | Cisco | high | 7.8 | 2.6%
| | Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x, 5.x before 5.1(3g), 6.x b… | Aug 27, 2009 | Apr 23, 2026 |
| | CVE-2009-2698 | VMware | high | 7.8 | 26.1%
| | The udp_sendmsg function in the UDP implementation in (1) net/ipv4/udp.c and (2) net/ipv6/udp.c in t… | Aug 27, 2009 | Apr 23, 2026 |
| | CVE-2009-3003 | Microsoft | medium | 4.3 | 22.7%
| | Microsoft Internet Explorer 6 through 8 allows remote attackers to spoof the address bar, via window… | Aug 28, 2009 | Apr 23, 2026 |
| | CVE-2009-3019 | Microsoft | medium | 5.0 | 7.2%
| | Microsoft Internet Explorer 6 on Windows XP SP2 and SP3, and Internet Explorer 7 on Vista, allows re… | Aug 31, 2009 | Apr 23, 2026 |
| | CVE-2009-3023 | Microsoft | critical | 9.0 | 79.3%
| | Buffer overflow in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 6.0 … | Aug 31, 2009 | Apr 23, 2026 |
| | CVE-2009-2968 | VMware | medium | 5.0 | 0.3%
| | Directory traversal vulnerability in a support component in the web interface in VMware Studio 2.0 p… | Sep 2, 2009 | Apr 23, 2026 |
| | CVE-2009-2521 | Microsoft | medium | 5.0 | 60.8%
| | Stack consumption vulnerability in the FTP Service in Microsoft Internet Information Services (IIS) … | Sep 4, 2009 | Apr 23, 2026 |
| | CVE-2009-3094 | Apache | low | 2.6 | 2.8%
| | The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the Ap… | Sep 8, 2009 | Apr 23, 2026 |
| | CVE-2009-3095 | Apache | medium | 5.0 | 3.0%
| | The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access… | Sep 8, 2009 | Apr 23, 2026 |
| | CVE-2009-3096 | HPE | critical | 10.0 | 1.5%
| | Multiple unspecified vulnerabilities in HP Performance Insight 5.3 allow remote attackers to have an… | Sep 8, 2009 | Apr 23, 2026 |
| | CVE-2009-3097 | HPE | high | 7.8 | 0.6%
| | Multiple unspecified vulnerabilities in HP Performance Insight 5.3 on Windows allow attackers to obt… | Sep 8, 2009 | Apr 23, 2026 |
| | CVE-2009-3098 | HPE | critical | 10.0 | 2.5%
| | Unspecified vulnerability in the Portal in HP Operations Dashboard 2.1 on Windows Server 2003 SP2 al… | Sep 8, 2009 | Apr 23, 2026 |
| | CVE-2009-3099 | HPE | critical | 10.0 | 11.3%
| | Unspecified vulnerability in HP OpenView Operations Manager 8.1 on Windows Server 2003 SP2 allows re… | Sep 8, 2009 | Apr 23, 2026 |
| | CVE-2009-0199 | VMware | critical | 9.3 | 12.0%
| | Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 … | Sep 8, 2009 | Apr 23, 2026 |
| | CVE-2009-2498 | Microsoft | critical | 9.3 | 29.6%
| | Microsoft Windows Media Format Runtime 9.0, 9.5, and 11 and Windows Media Services 9.1 and 2008 do n… | Sep 8, 2009 | Apr 23, 2026 |
| | CVE-2009-2499 | Microsoft | high | 8.5 | 30.7%
| | Microsoft Windows Media Format Runtime 9.0, 9.5, and 11; and Microsoft Media Foundation on Windows V… | Sep 8, 2009 | Apr 23, 2026 |
| | CVE-2009-2628 | VMware | critical | 9.3 | 12.8%
| | The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstati… | Sep 8, 2009 | Apr 23, 2026 |
| | CVE-2008-7217 | Microsoft | medium | 4.6 | 0.3%
| | Microsoft Office 2008 for Mac, when running on Macintosh systems that restrict Office access to admi… | Sep 13, 2009 | Apr 23, 2026 |
| | CVE-2009-2629 |  F5 | high | 7.5 | 78.1%
| | Buffer underflow in src/http/ngx_http_parse.c in nginx 0.1.0 through 0.5.37, 0.6.x before 0.6.39, 0.… | Sep 15, 2009 | Apr 23, 2026 |
| | CVE-2009-3267 | Microsoft | medium | 5.0 | 13.8%
| | Microsoft Internet Explorer 6 through 6.0.2900.2180, and 7.0.6000.16711, allows remote attackers to … | Sep 18, 2009 | Apr 23, 2026 |
| | CVE-2009-3270 | Microsoft | medium | 5.0 | 41.5%
| | Microsoft Internet Explorer 7 through 7.0.6000.16711 allows remote attackers to cause a denial of se… | Sep 18, 2009 | Apr 23, 2026 |
| | CVE-2009-3275 | Microsoft | medium | 5.0 | 9.9%
| | Blocks/Common/Src/Configuration/Manageability/Adm/AdmContentBuilder.cs in Microsoft patterns & pract… | Sep 21, 2009 | Apr 23, 2026 |
| | CVE-2009-3339 | Trellix | high | 7.8 | 0.3%
| | Unspecified vulnerability in McAfee Email and Web Security Appliance 5.1 VMtrial allows remote attac… | Sep 24, 2009 | Apr 23, 2026 |
| | CVE-2009-2864 | Cisco | high | 7.8 | 1.6%
| | Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 5.x before 5.1(3g), 6.x before… | Sep 28, 2009 | Apr 23, 2026 |
| | CVE-2009-2865 | Cisco | high | 7.6 | 3.7%
| | Buffer overflow in the login implementation in the Extension Mobility feature in the Unified Communi… | Sep 28, 2009 | Apr 23, 2026 |
| | CVE-2009-2681 | HPE | medium | 6.8 | 0.0%
| | Unspecified vulnerability in HP ProCurve Identity Driven Manager (IDM) A.02.x through A.02.03 and A.… | Sep 29, 2009 | Apr 23, 2026 |
| | CVE-2009-2683 | HPE | high | 7.1 | 0.3%
| | Unspecified vulnerability in the Sender module in HP Remote Graphics Software (RGS) 5.1.3 through 5.… | Sep 29, 2009 | Apr 23, 2026 |
| | CVE-2009-3569 | Apache | critical | 9.3 | 4.4%
| | Stack-based buffer overflow in OpenOffice.org (OOo) allows remote attackers to execute arbitrary cod… | Oct 6, 2009 | Apr 23, 2026 |
| | CVE-2009-2699 | Apache | high | 7.5 | 8.7%
| | The Solaris pollset feature in the Event Port backend in poll/unix/port.c in the Apache Portable Run… | Oct 13, 2009 | Apr 23, 2026 |
| | CVE-2009-3693 | HPE | critical | 9.3 | 72.6%
| | Directory traversal vulnerability in the Persits.XUpload.2 ActiveX control (XUpload.ocx) in HP LoadR… | Oct 13, 2009 | Apr 23, 2026 |
| | CVE-2009-0090 | Microsoft | critical | 9.3 | 42.1%
| | Microsoft .NET Framework 1.0 SP3, 1.1 SP1, and 2.0 SP1 does not properly validate .NET verifiable co… | Oct 14, 2009 | Apr 23, 2026 |