| | CVE-2017-8540 |  Microsoft | high | 7.8 | 84.6%
| ⚠ KEV | The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Mic… | May 26, 2017 | Apr 22, 2026 |
| | CVE-2017-8539 | Microsoft | medium | 5.5 | 19.2%
| | The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Mic… | May 26, 2017 | May 13, 2026 |
| | CVE-2017-8538 | Microsoft | high | 7.8 | 62.6%
| | The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Mic… | May 26, 2017 | May 13, 2026 |
| | CVE-2017-8537 | Microsoft | medium | 5.5 | 5.0%
| | The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Mic… | May 26, 2017 | May 13, 2026 |
| | CVE-2017-8536 | Microsoft | medium | 5.5 | 5.0%
| | The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Mic… | May 26, 2017 | May 13, 2026 |
| | CVE-2017-8535 | Microsoft | medium | 5.5 | 5.0%
| | The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Mic… | May 26, 2017 | May 13, 2026 |
| | CVE-2016-5007 |  VMware | high | 7.5 | 0.2%
| | Both Spring Security 3.2.x, 4.0.x, 4.1.0 and the Spring Framework 3.2.x, 4.0.x, 4.1.x, 4.2.x rely on… | May 25, 2017 | May 13, 2026 |
| | CVE-2015-5211 | VMware | critical | 9.6 | 1.9%
| | Under some situations, the Spring Framework 4.2.0 to 4.2.1, 4.0.0 to 4.1.7, 3.2.0 to 3.2.14 and olde… | May 25, 2017 | May 13, 2026 |
| | CVE-2014-3527 | VMware | critical | 9.8 | 0.4%
| | When using the CAS Proxy ticket authentication from Spring Security 3.1 to 3.2.4 a malicious CAS Ser… | May 25, 2017 | May 13, 2026 |
| | CVE-2014-0225 | VMware | high | 8.8 | 0.2%
| | When processing user provided XML documents, the Spring Framework 4.0.0 to 4.0.4, 3.0.0 to 3.2.8, an… | May 25, 2017 | May 13, 2026 |
| | CVE-2014-0097 | VMware | high | 7.3 | 0.2%
| | The ActiveDirectoryLdapAuthenticator in Spring Security 3.2.0 to 3.2.1 and 3.1.0 to 3.1.5 does not c… | May 25, 2017 | May 13, 2026 |
| | CVE-2017-6131 |  F5 | critical | 9.8 | 0.8%
| | In some circumstances, an F5 BIG-IP version 12.0.0 to 12.1.2 and 13.0.0 Azure cloud instance may con… | May 23, 2017 | May 13, 2026 |
| | CVE-2017-6891 |  Apache | high | 8.8 | 1.2%
| | Two errors in the "asn1_find_node()" function (lib/parser_aux.c) within GnuTLS libtasn1 version 4.10… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-5657 | Apache | high | 8.0 | 0.1%
| | Several REST service endpoints of Apache Archiva are not protected against Cross Site Request Forger… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-4916 | VMware | medium | 6.5 | 9.5%
| | VMware Workstation Pro/Player contains a NULL pointer dereference vulnerability that exists in the v… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-4915 | VMware | high | 7.8 | 11.6%
| | VMware Workstation Pro/Player contains an insecure library loading vulnerability via ALSA sound driv… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6654 |  Cisco | medium | 6.1 | 0.1%
| | A vulnerability in the web-based management interface of Cisco Unified Communications Manager 10.5 t… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6653 | Cisco | high | 7.5 | 0.8%
| | A vulnerability in the TCP throttling process for the GUI of the Cisco Identity Services Engine (ISE… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6647 | Cisco | medium | 5.3 | 0.4%
| | A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an u… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6646 | Cisco | medium | 5.3 | 0.4%
| | A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an u… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6645 | Cisco | medium | 5.3 | 0.4%
| | A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an u… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6644 | Cisco | medium | 5.3 | 0.4%
| | A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an u… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6643 | Cisco | medium | 5.3 | 0.4%
| | A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an u… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6642 | Cisco | medium | 5.3 | 0.4%
| | A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an u… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6641 | Cisco | high | 7.5 | 1.4%
| | A vulnerability in the TCP connection handling functionality of Cisco Remote Expert Manager Software… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6637 | Cisco | medium | 6.5 | 1.1%
| | A vulnerability in the web interface of Cisco Prime Collaboration Provisioning Software (prior to Re… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6636 | Cisco | medium | 6.5 | 3.8%
| | A vulnerability in the web interface of Cisco Prime Collaboration Provisioning Software (prior to Re… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6635 | Cisco | medium | 6.5 | 4.9%
| | A vulnerability in the web interface of Cisco Prime Collaboration Provisioning Software (prior to Re… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6633 | Cisco | high | 7.5 | 0.8%
| | A vulnerability in the TCP throttling process of Cisco UCS C-Series Rack Servers 3.0(0.234) could al… | May 22, 2017 | May 13, 2026 |
| | CVE-2017-6632 | Cisco | high | 7.5 | 1.4%
| | A vulnerability in the logging configuration of Secure Sockets Layer (SSL) policies for Cisco FirePO… | May 22, 2017 | May 13, 2026 |
| | CVE-2015-5241 | Apache | medium | 6.1 | 3.0%
| | After logging into the portal, the logout jsp page redirects the browser back to the login page afte… | May 19, 2017 | May 13, 2026 |
| | CVE-2017-6652 | Cisco | high | 7.5 | 3.0%
| | A vulnerability in the web framework of the Cisco TelePresence IX5000 Series could allow an unauthen… | May 18, 2017 | May 13, 2026 |
| | CVE-2017-6623 | Cisco | high | 7.8 | 0.0%
| | A vulnerability in a script file that is installed as part of the Cisco Policy Suite (CPS) Software … | May 18, 2017 | May 13, 2026 |
| | CVE-2017-6622 | Cisco | critical | 9.8 | 31.0%
| | A vulnerability in the web interface for Cisco Prime Collaboration Provisioning could allow an unaut… | May 18, 2017 | May 13, 2026 |
| | CVE-2017-6621 | Cisco | high | 7.5 | 3.8%
| | A vulnerability in the web interface of Cisco Prime Collaboration Provisioning could allow an unauth… | May 18, 2017 | May 13, 2026 |
| | CVE-2017-3980 |  Trellix | high | 7.2 | 3.4%
| | A directory traversal vulnerability in the ePO Extension in McAfee ePolicy Orchestrator (ePO) 5.9.0,… | May 18, 2017 | May 13, 2026 |
| | CVE-2017-4017 | Trellix | medium | 5.3 | 0.2%
| | User Name Disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote… | May 17, 2017 | May 13, 2026 |
| | CVE-2017-4016 | Trellix | medium | 5.3 | 0.2%
| | Web Server method disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allow… | May 17, 2017 | May 13, 2026 |
| | CVE-2017-4015 | Trellix | medium | 4.5 | 0.2%
| | Clickjacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows … | May 17, 2017 | May 13, 2026 |
| | CVE-2017-4014 | Trellix | high | 8.0 | 0.4%
| | Session Side jacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x… | May 17, 2017 | May 13, 2026 |
| | CVE-2017-4013 | Trellix | medium | 5.3 | 0.2%
| | Banner Disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote at… | May 17, 2017 | May 13, 2026 |
| | CVE-2017-4012 | Trellix | medium | 6.5 | 0.3%
| | Privilege Escalation vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x… | May 17, 2017 | May 13, 2026 |
| | CVE-2017-4011 | Trellix | medium | 6.1 | 10.9%
| | Embedding Script (XSS) in HTTP Headers vulnerability in the server in McAfee Network Data Loss Preve… | May 17, 2017 | May 13, 2026 |
| | CVE-2017-7662 | Apache | high | 8.8 | 1.0%
| | Apache CXF Fediz ships with an OpenId Connect (OIDC) service which has a Client Registration Service… | May 16, 2017 | May 13, 2026 |
| | CVE-2017-7661 | Apache | high | 8.8 | 0.9%
| | Apache CXF Fediz ships with a number of container-specific plugins to enable WS-Federation for appli… | May 16, 2017 | May 13, 2026 |
| | CVE-2017-6658 | Cisco | high | 7.5 | 0.5%
| | Cisco Sourcefire Snort 3.0 before build 233 has a Buffer Overread related to use of a decoder array.… | May 16, 2017 | May 13, 2026 |
| | CVE-2017-6657 | Cisco | high | 7.5 | 0.5%
| | Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type Validation. Since valid ether type… | May 16, 2017 | May 13, 2026 |
| | CVE-2017-6651 | Cisco | high | 7.5 | 0.4%
| | A vulnerability in Cisco WebEx Meetings Server could allow unauthenticated, remote attackers to gain… | May 16, 2017 | May 13, 2026 |
| | CVE-2017-3882 | Cisco | critical | 9.6 | 1.1%
| | A vulnerability in the Universal Plug-and-Play (UPnP) implementation in the Cisco CVR100W Wireless-N… | May 16, 2017 | May 13, 2026 |
| | CVE-2017-3825 | Cisco | high | 7.5 | 0.4%
| | A vulnerability in the ICMP ingress packet processing of Cisco TelePresence Collaboration Endpoint (… | May 16, 2017 | May 13, 2026 |