| | CVE-2017-0252 |  Microsoft | critical | 9.8 | 24.3%
| | A remote code execution vulnerability exists in Microsoft Chakra Core in the way JavaScript engines … | May 15, 2017 | May 13, 2026 |
| | CVE-2017-0223 | Microsoft | critical | 9.8 | 36.0%
| | A remote code execution vulnerability exists in Microsoft Chakra Core in the way JavaScript engines … | May 15, 2017 | May 13, 2026 |
| | CVE-2017-5655 |  Apache | medium | 6.5 | 0.1%
| | In Ambari 2.2.2 through 2.4.2 and Ambari 2.5.0, sensitive data may be stored on disk in temporary fi… | May 15, 2017 | May 13, 2026 |
| | CVE-2016-8741 | Apache | high | 7.5 | 0.4%
| | The Apache Qpid Broker for Java can be configured to use different so called AuthenticationProviders… | May 15, 2017 | May 13, 2026 |
| | CVE-2017-5654 | Apache | high | 7.5 | 0.9%
| | In Ambari 2.4.x (before 2.4.3) and Ambari 2.5.0, an authorized user of the Ambari Hive View may be a… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-2122 |  Tenable | medium | 5.4 | 0.4%
| | Cross-site scripting vulnerability in Nessus versions 6.8.0, 6.8.1, 6.9.0, 6.9.1 and 6.9.2 allows re… | May 12, 2017 | May 13, 2026 |
| | CVE-2016-4859 |  Splunk | medium | 6.1 | 0.2%
| | Open redirect vulnerability in Splunk Enterprise 6.4.x prior to 6.4.3, Splunk Enterprise 6.3.x prior… | May 12, 2017 | May 13, 2026 |
| | CVE-2016-4858 | Splunk | medium | 4.8 | 0.2%
| | Cross-site scripting vulnerability in Splunk Enterprise 6.4.x prior to 6.4.2, Splunk Enterprise 6.3.… | May 12, 2017 | May 13, 2026 |
| | CVE-2016-4857 | Splunk | medium | 6.1 | 0.2%
| | Open redirect vulnerability in Splunk Enterprise 6.4.x prior to 6.4.2, Splunk Enterprise 6.3.x prior… | May 12, 2017 | May 13, 2026 |
| | CVE-2016-4856 | Splunk | medium | 4.8 | 0.3%
| | Cross-site scripting vulnerability in Splunk Enterprise 6.3.x prior to 6.3.5 and Splunk Light 6.3.x … | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0281 | Microsoft | high | 7.8 | 43.3%
| | Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2016, Office Online Server 2016,… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0266 | Microsoft | high | 7.5 | 36.6%
| | A remote code execution vulnerability exists in Microsoft Edge in the way affected Microsoft scripti… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0265 | Microsoft | high | 7.8 | 28.7%
| | Microsoft PowerPoint for Mac 2011 allows a remote code execution vulnerability when the software fai… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0264 | Microsoft | high | 7.8 | 29.0%
| | Microsoft PowerPoint for Mac 2011 allows a remote code execution vulnerability when the software fai… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0262 | Microsoft | high | 7.8 | 64.3%
| ⚠ KEV | Microsoft Office 2010 SP2, Office 2013 SP1, and Office 2016 allow a remote code execution vulnerabil… | May 12, 2017 | Apr 22, 2026 |
| | CVE-2017-0261 | Microsoft | high | 7.8 | 92.5%
| ⚠ KEV | Microsoft Office 2010 SP2, Office 2013 SP1, and Office 2016 allow a remote code execution vulnerabil… | May 12, 2017 | Apr 22, 2026 |
| | CVE-2017-0256 | Microsoft | medium | 5.3 | 4.3%
| | A spoofing vulnerability exists when the ASP.NET Core fails to properly sanitize web requests. | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0255 | Microsoft | medium | 5.4 | 1.2%
| | Microsoft SharePoint Foundation 2013 SP1 allows an elevation of privilege vulnerability when it does… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0254 | Microsoft | high | 7.8 | 32.6%
| | Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Office for Mac 2… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0249 | Microsoft | high | 7.3 | 5.8%
| | An elevation of privilege vulnerability exists when the ASP.NET Core fails to properly sanitize web … | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0248 | Microsoft | high | 7.5 | 1.1%
| | Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allow an attacker to bypa… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0247 | Microsoft | high | 7.5 | 11.1%
| | A denial of service vulnerability exists when the ASP.NET Core fails to properly validate web reques… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0241 | Microsoft | medium | 5.3 | 15.0%
| | An elevation of privilege vulnerability exists when Microsoft Edge renders a domain-less page in the… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0240 | Microsoft | high | 7.5 | 29.4%
| | A remote code execution vulnerability exists in Microsoft Edge in the way affected Microsoft scripti… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0238 | Microsoft | high | 7.5 | 21.4%
| | A remote code execution vulnerability exists in Microsoft browsers in the way JavaScript scripting e… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0236 | Microsoft | high | 7.5 | 55.6%
| | A remote code execution vulnerability exists in Microsoft Edge in the way that the Chakra JavaScript… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0235 | Microsoft | high | 7.5 | 27.0%
| | A remote code execution vulnerability exists in Microsoft Edge in the way that the Chakra JavaScript… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0234 | Microsoft | high | 7.5 | 55.6%
| | A remote code execution vulnerability exists in Microsoft Edge in the way that the Chakra JavaScript… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0233 | Microsoft | high | 8.3 | 2.6%
| | An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to esc… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0231 | Microsoft | medium | 4.3 | 8.5%
| | A spoofing vulnerability exists when Microsoft browsers render SmartScreen Filter, aka "Microsoft Br… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0230 | Microsoft | high | 7.5 | 24.0%
| | A remote code execution vulnerability exists in Microsoft Edge in the way JavaScript engines render … | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0229 | Microsoft | high | 7.5 | 24.0%
| | A remote code execution vulnerability exists in Microsoft Edge in the way JavaScript engines render … | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0228 | Microsoft | high | 7.5 | 38.1%
| | A remote code execution vulnerability exists in Microsoft browsers in the way JavaScript engines ren… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0227 | Microsoft | high | 7.5 | 29.4%
| | A remote code execution vulnerability exists in Microsoft Edge in the way affected Microsoft scripti… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0226 | Microsoft | high | 7.5 | 24.0%
| | A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in m… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0224 | Microsoft | high | 7.5 | 27.6%
| | A remote code execution vulnerability exists in the way JavaScript engines render when handling obje… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0222 | Microsoft | high | 8.8 | 62.0%
| ⚠ KEV | A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in m… | May 12, 2017 | Apr 22, 2026 |
| | CVE-2017-0221 | Microsoft | high | 7.5 | 17.3%
| | A vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edg… | May 12, 2017 | May 13, 2026 |
| | CVE-2017-0064 | Microsoft | medium | 6.5 | 18.7%
| | A security feature bypass vulnerability exists in Internet Explorer that allows for bypassing Mixed … | May 12, 2017 | May 13, 2026 |
| | CVE-2016-7476 |  F5 | high | 7.5 | 1.2%
| | The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM, AFM, APM, ASM, GTM, Link Controller,… | May 11, 2017 | May 13, 2026 |
| | CVE-2017-4896 |  VMware | low | 3.8 | 0.0%
| | Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the lo… | May 10, 2017 | May 13, 2026 |
| | CVE-2017-4895 | VMware | high | 8.8 | 0.0%
| | Airwatch Agent for Android contains a vulnerability that may allow a device to bypass root detection… | May 10, 2017 | May 13, 2026 |
| | CVE-2016-9250 | F5 | high | 7.5 | 0.6%
| | In F5 BIG-IP 11.2.1, 11.4.0 through 11.6.1, and 12.0.0 through 12.1.2, an unauthenticated user with … | May 10, 2017 | May 13, 2026 |
| | CVE-2017-6137 | F5 | medium | 5.9 | 0.7%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, … | May 9, 2017 | May 13, 2026 |
| | CVE-2017-0302 | F5 | medium | 5.3 | 0.3%
| | In F5 BIG-IP APM 12.0.0 through 12.1.2 and 13.0.0, an authenticated user with an established access … | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9257 | F5 | medium | 6.1 | 0.3%
| | In F5 BIG-IP APM 12.0.0 through 12.1.2, non-authenticated users may be able to inject JavaScript int… | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9256 | F5 | high | 7.5 | 0.2%
| | In F5 BIG-IP 12.1.0 through 12.1.2, permissions enforced by iControl can lag behind the actual permi… | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9253 | F5 | high | 7.5 | 0.8%
| | In F5 BIG-IP 12.1.0 through 12.1.2, specific websocket traffic patterns may cause a disruption of se… | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9251 | F5 | high | 8.8 | 0.5%
| | In F5 BIG-IP 12.0.0 through 12.1.2, an authenticated attacker may be able to cause an escalation of … | May 9, 2017 | May 13, 2026 |
| | CVE-2016-6799 | Apache | high | 7.5 | 0.5%
| | Product: Apache Cordova Android 5.2.2 and earlier. The application calls methods of the Log class. M… | May 9, 2017 | May 13, 2026 |