| | CVE-2012-3941 |  Cisco | critical | 9.3 | 7.7%
| | Heap-based buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 … | Oct 25, 2012 | Apr 29, 2026 |
| | CVE-2012-4501 |  Apache | critical | 10.0 | 2.7%
| | Citrix Cloud.com CloudStack, and Apache CloudStack pre-release, allows remote attackers to make arbi… | Oct 26, 2012 | Apr 29, 2026 |
| | CVE-2012-5416 | Cisco | high | 7.8 | 0.6%
| | Buffer overflow in Cisco Unified MeetingPlace Web Conferencing before 7.1MR1 Patch 1, 8.0 before 8.0… | Nov 2, 2012 | Apr 29, 2026 |
| | CVE-2012-5417 | Cisco | critical | 10.0 | 2.5%
| | Cisco Prime Data Center Network Manager (DCNM) before 6.1(1) does not properly restrict access to ce… | Nov 2, 2012 | Apr 29, 2026 |
| | CVE-2012-3446 | Apache | medium | 5.9 | 0.3%
| | Apache Libcloud before 0.11.1 uses an incorrect regular expression during verification of whether th… | Nov 4, 2012 | Apr 29, 2026 |
| | CVE-2012-5783 | Apache | medium | 5.8 | 0.6%
| | Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service (FPS) merchant Java SDK a… | Nov 4, 2012 | Apr 29, 2026 |
| | CVE-2012-5784 | Apache | medium | 5.8 | 1.6%
| | Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional I… | Nov 4, 2012 | Apr 29, 2026 |
| | CVE-2012-5785 | Apache | medium | 5.8 | 0.5%
| | Apache Axis2/Java 1.6.2 and earlier does not verify that the server hostname matches a domain name i… | Nov 4, 2012 | Apr 29, 2026 |
| | CVE-2012-5786 | Apache | medium | 5.8 | 0.1%
| | The wsdl_first_https sample code in distribution/src/main/release/samples/wsdl_first_https/src/main/… | Nov 4, 2012 | Apr 29, 2026 |
| | CVE-2012-3269 |  HPE | high | 7.5 | 1.7%
| | Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and 5.41, when Sybase is used, allow… | Nov 7, 2012 | Apr 29, 2026 |
| | CVE-2012-3270 | HPE | critical | 10.0 | 3.3%
| | Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and 5.41, when Sybase is used, allow… | Nov 7, 2012 | Apr 29, 2026 |
| | CVE-2012-5424 | Cisco | medium | 5.0 | 0.4%
| | Cisco Secure Access Control System (ACS) 5.x before 5.2 Patch 11 and 5.3 before 5.3 Patch 7, when a … | Nov 7, 2012 | Apr 29, 2026 |
| | CVE-2012-1538 |  Microsoft | critical | 9.3 | 14.2%
| | Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arb… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-1539 | Microsoft | high | 8.1 | 19.0%
| | Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arb… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-1885 | Microsoft | critical | 9.3 | 65.9%
| | Heap-based buffer overflow in Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Office 2008 … | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-1886 | Microsoft | critical | 9.3 | 62.1%
| | Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Excel Viewer; and Office Compatibility Pac… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-1887 | Microsoft | critical | 9.3 | 58.3%
| | Use-after-free vulnerability in Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1, and Office… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-1895 | Microsoft | critical | 9.3 | 9.3%
| | The reflection implementation in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5.1, and 4 do… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-1896 | Microsoft | medium | 5.0 | 48.7%
| | Microsoft .NET Framework 2.0 SP2 and 3.5.1 does not properly consider trust levels during constructi… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-2519 | Microsoft | high | 7.9 | 0.7%
| | Untrusted search path vulnerability in Entity Framework in ADO.NET in Microsoft .NET Framework 1.0 S… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-2532 | Microsoft | medium | 5.0 | 19.6%
| | Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) processes unspecified comm… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-2543 | Microsoft | critical | 9.3 | 65.9%
| | Stack-based buffer overflow in Microsoft Excel 2007 SP2 and SP3 and 2010 SP1; Office 2011 for Mac; E… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-4775 | Microsoft | high | 8.8 | 14.8%
| | Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arb… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-4776 | Microsoft | critical | 9.3 | 45.0%
| | The Web Proxy Auto-Discovery (WPAD) functionality in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-4777 | Microsoft | critical | 9.3 | 10.2%
| | The code-optimization feature in the reflection implementation in Microsoft .NET Framework 4 and 4.5… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-3569 |  VMware | critical | 9.3 | 80.6%
| | Format string vulnerability in VMware OVF Tool 2.1 on Windows, as used in VMware Workstation 8.x bef… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-5458 | VMware | high | 8.3 | 0.1%
| | VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissio… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-5459 | VMware | high | 7.9 | 0.1%
| | Untrusted search path vulnerability in VMware Workstation 8.x before 8.0.5 and VMware Player 4.x bef… | Nov 14, 2012 | Apr 29, 2026 |
| | CVE-2012-2733 | Apache | medium | 5.0 | 20.3%
| | java/org/apache/coyote/http11/InternalNioInputBuffer.java in the HTTP NIO connector in Apache Tomcat… | Nov 16, 2012 | Apr 29, 2026 |
| | CVE-2012-5885 | Apache | medium | 5.0 | 2.3%
| | The replay-countermeasure functionality in the HTTP Digest Access Authentication implementation in A… | Nov 17, 2012 | Apr 29, 2026 |
| | CVE-2012-5886 | Apache | medium | 5.0 | 0.6%
| | The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x befor… | Nov 17, 2012 | Apr 29, 2026 |
| | CVE-2012-4557 | Apache | medium | 5.0 | 26.0%
| | The mod_proxy_ajp module in the Apache HTTP Server 2.2.12 through 2.2.21 places a worker node into a… | Nov 30, 2012 | Apr 29, 2026 |
| | CVE-2012-5568 | Apache | medium | 5.0 | 13.8%
| | Apache Tomcat through 7.0.x allows remote attackers to cause a denial of service (daemon outage) via… | Nov 30, 2012 | Apr 29, 2026 |
| | CVE-2009-2899 | VMware | low | 2.1 | 0.0%
| | The monitor perl script in the Sybase database plug-in in SpringSource Hyperic HQ before 4.3 allows … | Dec 5, 2012 | Apr 29, 2026 |
| | CVE-2011-2731 | VMware | medium | 5.1 | 0.2%
| | Race condition in the RunAsManager mechanism in VMware SpringSource Spring Security before 2.0.7 and… | Dec 5, 2012 | Apr 29, 2026 |
| | CVE-2011-2732 | VMware | medium | 4.3 | 7.2%
| | CRLF injection vulnerability in the logout functionality in VMware SpringSource Spring Security befo… | Dec 5, 2012 | Apr 29, 2026 |
| | CVE-2012-5055 | VMware | medium | 5.0 | 0.4%
| | DaoAuthenticationProvider in VMware SpringSource Spring Security before 2.0.8, 3.0.x before 3.0.8, a… | Dec 5, 2012 | Apr 29, 2026 |
| | CVE-2012-3274 | HPE | critical | 10.0 | 73.4%
| | Stack-based buffer overflow in uam.exe in the User Access Manager (UAM) component in HP Intelligent … | Dec 6, 2012 | Apr 29, 2026 |
| | CVE-2012-3275 | HPE | critical | 10.0 | 25.4%
| | Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.1x and 9.20 allows remote attackers … | Dec 6, 2012 | Apr 29, 2026 |
| | CVE-2012-1537 | Microsoft | critical | 9.3 | 62.2%
| | Heap-based buffer overflow in DirectPlay in DirectX 9.0 through 11.1 in Microsoft Windows XP SP2 and… | Dec 12, 2012 | Apr 29, 2026 |
| | CVE-2012-2539 | Microsoft | high | 7.8 | 84.4%
| ⚠ KEV | Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 … | Dec 12, 2012 | Apr 22, 2026 |
| | CVE-2012-4781 | Microsoft | critical | 9.3 | 49.4%
| | Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to … | Dec 12, 2012 | Apr 29, 2026 |
| | CVE-2012-4782 | Microsoft | critical | 9.3 | 51.4%
| | Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to exec… | Dec 12, 2012 | Apr 29, 2026 |
| | CVE-2012-4787 | Microsoft | critical | 9.0 | 36.2%
| | Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to exec… | Dec 12, 2012 | Apr 29, 2026 |
| | CVE-2012-4791 | Microsoft | low | 3.5 | 33.3%
| | Microsoft Exchange Server 2007 SP3 and 2010 SP1 and SP2 allows remote authenticated users to cause a… | Dec 12, 2012 | Apr 29, 2026 |
| | CVE-2012-3546 | Apache | medium | 4.3 | 2.2%
| | org/apache/catalina/realm/RealmBase.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.30, w… | Dec 19, 2012 | Apr 29, 2026 |
| | CVE-2012-4431 | Apache | medium | 4.3 | 9.8%
| | org/apache/catalina/filters/CsrfPreventionFilter.java in Apache Tomcat 6.x before 6.0.36 and 7.x bef… | Dec 19, 2012 | Apr 29, 2026 |
| | CVE-2012-4534 | Apache | low | 2.6 | 22.8%
| | org/apache/tomcat/util/net/NioEndpoint.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28… | Dec 19, 2012 | Apr 29, 2026 |
| | CVE-2012-5978 | VMware | medium | 5.0 | 0.2%
| | Multiple directory traversal vulnerabilities in the (1) View Connection Server and (2) View Security… | Dec 19, 2012 | Apr 29, 2026 |
| | CVE-2012-6324 | VMware | medium | 4.0 | 0.1%
| | Directory traversal vulnerability in VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 and … | Dec 21, 2012 | Apr 29, 2026 |