| | CVE-2016-7208 |  Microsoft | high | 7.5 | 15.2%
| | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7204 | Microsoft | low | 3.1 | 18.6%
| | Microsoft Edge allows remote attackers to access arbitrary "My Documents" files via a crafted web si… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7203 | Microsoft | high | 7.5 | 73.7%
| | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7202 | Microsoft | high | 7.5 | 76.9%
| | The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote at… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7201 | Microsoft | high | 8.8 | 90.1%
| ⚠ KEV | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | Apr 22, 2026 |
| | CVE-2016-7200 | Microsoft | high | 8.8 | 88.2%
| ⚠ KEV | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | Apr 22, 2026 |
| | CVE-2016-7199 | Microsoft | low | 3.1 | 16.6%
| | Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to bypass the Sam… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7198 | Microsoft | high | 7.5 | 20.5%
| | Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7196 | Microsoft | high | 7.5 | 20.5%
| | Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7195 | Microsoft | high | 7.5 | 20.5%
| | Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-6454 |  Cisco | medium | 6.5 | 0.2%
| | A cross-site request forgery (CSRF) vulnerability in the web interface of the Cisco Hosted Collabora… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6453 | Cisco | high | 7.3 | 0.3%
| | A vulnerability in the web framework code of Cisco Identity Services Engine (ISE) could allow an aut… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6452 | Cisco | critical | 9.8 | 1.1%
| | A vulnerability in the web-based graphical user interface (GUI) of Cisco Prime Home could allow an u… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6451 | Cisco | medium | 6.1 | 0.5%
| | Multiple vulnerabilities in the web framework code of the Cisco Prime Collaboration Provisioning cou… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6448 | Cisco | critical | 9.8 | 7.6%
| | A vulnerability in the Session Description Protocol (SDP) parser of Cisco Meeting Server could allow… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6447 | Cisco | critical | 9.8 | 7.6%
| | A vulnerability in Cisco Meeting Server and Meeting App could allow an unauthenticated, remote attac… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6430 | Cisco | high | 7.8 | 0.1%
| | A vulnerability in the command-line interface of the Cisco IP Interoperability and Collaboration Sys… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6429 | Cisco | medium | 6.1 | 0.3%
| | A vulnerability in the web framework code of the Cisco IP Interoperability and Collaboration System … | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-4396 |  HPE | high | 7.5 | 1.5%
| | HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-4395 | HPE | high | 7.5 | 1.5%
| | HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-4394 | HPE | medium | 6.5 | 0.5%
| | HPE System Management Homepage before v7.6 allows remote attackers to obtain sensitive information v… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-4393 | HPE | medium | 5.4 | 0.3%
| | HPE System Management Homepage before v7.6 allows "remote authenticated" attackers to obtain sensiti… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6397 | Cisco | critical | 9.8 | 1.0%
| | A vulnerability in the interdevice communications interface of the Cisco IP Interoperability and Col… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6372 | Cisco | high | 7.5 | 0.3%
| | A vulnerability in the email message and content filtering for malformed Multipurpose Internet Mail … | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6360 | Cisco | high | 7.5 | 1.4%
| | A vulnerability in Advanced Malware Protection (AMP) for Cisco Email Security Appliances (ESA) and W… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6358 | Cisco | high | 7.5 | 1.0%
| | A vulnerability in local FTP to the Cisco Email Security Appliance (ESA) could allow an unauthentica… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6357 | Cisco | high | 7.5 | 0.2%
| | A vulnerability in the configured security policies, including drop email filtering, in Cisco AsyncO… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6356 | Cisco | high | 7.5 | 0.8%
| | A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Sec… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-1486 | Cisco | high | 7.5 | 0.8%
| | A vulnerability in the email attachment scanning functionality of the Advanced Malware Protection (A… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-1481 | Cisco | high | 7.5 | 0.8%
| | A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Sec… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-1480 | Cisco | high | 7.5 | 0.3%
| | A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Softwar… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-1423 | Cisco | medium | 6.1 | 0.5%
| | A vulnerability in the display of email messages in the Messages in Quarantine (MIQ) view in Cisco A… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6446 | Cisco | high | 7.5 | 0.5%
| | A vulnerability in Web Bridge for Cisco Meeting Server could allow an unauthenticated, remote attack… | Oct 27, 2016 | May 6, 2026 |
| | CVE-2016-6445 | Cisco | critical | 9.1 | 0.8%
| | A vulnerability in the Extensible Messaging and Presence Protocol (XMPP) service of the Cisco Meetin… | Oct 27, 2016 | May 6, 2026 |
| | CVE-2016-6444 | Cisco | high | 8.8 | 0.2%
| | A vulnerability in Cisco Meeting Server could allow an unauthenticated, remote attacker to conduct a… | Oct 27, 2016 | May 6, 2026 |
| | CVE-2016-6443 | Cisco | high | 8.8 | 1.9%
| | A vulnerability in the Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL datab… | Oct 27, 2016 | May 6, 2026 |
| | CVE-2016-6442 | Cisco | high | 8.8 | 0.2%
| | A vulnerability in Cisco Finesse Agent and Supervisor Desktop Software could allow an unauthenticate… | Oct 27, 2016 | May 6, 2026 |
| | CVE-2016-6440 | Cisco | medium | 6.5 | 0.3%
| | The Cisco Unified Communications Manager (CUCM) may be vulnerable to data that can be displayed insi… | Oct 27, 2016 | May 6, 2026 |
| | CVE-2016-6439 | Cisco | high | 7.5 | 0.1%
| | A vulnerability in the detection engine reassembly of HTTP packets for Cisco Firepower System Softwa… | Oct 27, 2016 | May 6, 2026 |
| | CVE-2016-6437 | Cisco | medium | 5.9 | 0.7%
| | A vulnerability in the SSL session cache management of Cisco Wide Area Application Services (WAAS) c… | Oct 27, 2016 | May 6, 2026 |
| | CVE-2016-1000031 |  Apache | critical | 9.8 | 56.4%
| | Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation Remote Code Execution | Oct 25, 2016 | May 6, 2026 |
| | CVE-2016-7194 | Microsoft | high | 7.5 | 79.0%
| | The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or … | Oct 14, 2016 | May 6, 2026 |
| | CVE-2016-7193 | Microsoft | high | 7.8 | 71.2%
| ⚠ KEV | Microsoft Word 2007 SP2, Office 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2… | Oct 14, 2016 | Apr 22, 2026 |
| | CVE-2016-7190 | Microsoft | high | 7.5 | 78.5%
| | The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or … | Oct 14, 2016 | May 6, 2026 |
| | CVE-2016-7189 | Microsoft | high | 7.5 | 74.6%
| | The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code via… | Oct 14, 2016 | May 6, 2026 |
| | CVE-2016-7182 | Microsoft | critical | 9.8 | 41.5%
| | The Graphics component in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7… | Oct 14, 2016 | May 6, 2026 |
| | CVE-2016-3396 | Microsoft | high | 7.8 | 32.4%
| | Graphics Device Interface (aka GDI or GDI+) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 … | Oct 14, 2016 | May 6, 2026 |
| | CVE-2016-3392 | Microsoft | medium | 5.3 | 9.4%
| | The Edge Content Security Policy feature in Microsoft Edge does not properly validate documents, whi… | Oct 14, 2016 | May 6, 2026 |
| | CVE-2016-3391 | Microsoft | medium | 5.3 | 27.4%
| | Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow context-dependent attackers to discov… | Oct 14, 2016 | May 6, 2026 |
| | CVE-2016-3390 | Microsoft | high | 7.5 | 20.5%
| | The scripting engines in Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to… | Oct 14, 2016 | May 6, 2026 |