| | CVE-2015-4304 |  Cisco | critical | 9.0 | 0.4%
| | The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authent… | Sep 20, 2015 | May 6, 2026 |
| | CVE-2015-6932 |  VMware | medium | 5.8 | 0.2%
| | VMware vCenter Server 5.5 before u3 and 6.0 before u1 does not verify X.509 certificates from TLS LD… | Sep 18, 2015 | May 6, 2026 |
| | CVE-2015-6296 | Cisco | high | 7.2 | 0.1%
| | Cisco Prime Network Registrar (CPNR) 8.1(3.3), 8.2(3), and 8.3(2) has a default account, which allow… | Sep 18, 2015 | May 6, 2026 |
| | CVE-2015-7238 |  Trellix | low | 2.1 | 0.0%
| | The Secondary server in Threat Intelligence Exchange (TIE) before 1.2.0 uses weak permissions for un… | Sep 18, 2015 | May 6, 2026 |
| | CVE-2015-7237 | Trellix | medium | 5.0 | 0.2%
| | Directory traversal vulnerability in the remote log viewing functionality in McAfee Agent (MA) 5.x b… | Sep 18, 2015 | May 6, 2026 |
| | CVE-2015-4638 |  F5 | medium | 5.0 | 0.7%
| | The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and… | Sep 18, 2015 | May 6, 2026 |
| | CVE-2015-4040 | F5 | medium | 4.0 | 6.8%
| | Directory traversal vulnerability in the configuration utility in F5 BIG-IP before 12.0.0 and Enterp… | Sep 17, 2015 | May 6, 2026 |
| | CVE-2015-5440 |  HPE | medium | 4.9 | 0.2%
| | HP UCMDB 10.00 and 10.01 before 10.01CUP12, 10.10 and 10.11 before 10.11CUP6, and 10.2x before 10.21… | Sep 16, 2015 | May 6, 2026 |
| | CVE-2015-2136 | HPE | medium | 4.0 | 0.1%
| | HP ArcSight Logger before 6.0 P2 allows remote authenticated users to bypass the intended authorizat… | Sep 16, 2015 | May 6, 2026 |
| | CVE-2015-5426 | HPE | medium | 4.6 | 0.1%
| | Unspecified vulnerability in HP LoadRunner Controller before 12.50 allows local users to gain privil… | Sep 16, 2015 | May 6, 2026 |
| | CVE-2015-6290 | Cisco | medium | 4.3 | 0.5%
| | Cisco Web Security Appliance (WSA) 8.0.7 allows remote HTTP servers to cause a denial of service (me… | Sep 14, 2015 | May 6, 2026 |
| | CVE-2015-6288 | Cisco | medium | 5.0 | 0.7%
| | Cisco Content Security Management Appliance (SMA) 7.8.0-000 does not properly validate credentials, … | Sep 14, 2015 | May 6, 2026 |
| | CVE-2015-6287 | Cisco | medium | 5.0 | 0.7%
| | Cisco Web Security Appliance (WSA) 8.0.6-078 and 8.0.6-115 allows remote attackers to cause a denial… | Sep 14, 2015 | May 6, 2026 |
| | CVE-2015-6286 | Cisco | medium | 5.7 | 0.2%
| | Cisco Application Visibility and Control (AVC) 15.3(3)JA, when FlexConnect is enabled, allows remote… | Sep 14, 2015 | May 6, 2026 |
| | CVE-2015-2545 |  Microsoft | high | 7.8 | 93.3%
| ⚠ KEV | Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allows remote attackers to execute ar… | Sep 9, 2015 | Apr 22, 2026 |
| | CVE-2015-2544 | Microsoft | medium | 4.3 | 6.9%
| | Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 20… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2543 | Microsoft | medium | 4.3 | 6.9%
| | Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 20… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2542 | Microsoft | critical | 9.3 | 14.8%
| | Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2541 | Microsoft | critical | 9.3 | 14.8%
| | Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2536 | Microsoft | medium | 4.3 | 9.0%
| | Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2532 | Microsoft | medium | 4.3 | 9.6%
| | Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 allows remote attackers to in… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2531 | Microsoft | medium | 4.3 | 13.2%
| | Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skyp… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2526 | Microsoft | medium | 5.0 | 18.4%
| | Microsoft .NET Framework 4.5, 4.5.1, 4.5.2, and 4.6 allows remote attackers to cause a denial of ser… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2523 | Microsoft | critical | 9.3 | 74.0%
| | Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel for Mac 2011 and … | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2522 | Microsoft | low | 3.5 | 8.6%
| | Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2013 SP1 allows remote a… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2521 | Microsoft | critical | 9.3 | 69.2%
| | Microsoft Excel 2007 SP3, Excel 2010 SP2, Office Compatibility Pack SP3, and Excel Viewer allow remo… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2520 | Microsoft | critical | 9.3 | 69.2%
| | Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel for Mac 2011 and 2016, Office Compatibility Pack SP3… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2510 | Microsoft | critical | 9.3 | 70.6%
| | Buffer overflow in the Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 200… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2505 | Microsoft | medium | 5.0 | 14.3%
| | Outlook Web Access (OWA) in Microsoft Exchange Server 2013 Cumulative Update 8 and 9 and SP1 allows … | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2504 | Microsoft | critical | 9.3 | 31.8%
| | Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, and 4.6 improperly counts object… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2501 | Microsoft | critical | 9.3 | 14.8%
| | Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2500 | Microsoft | critical | 9.3 | 14.8%
| | Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code or cause a den… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2499 | Microsoft | critical | 9.3 | 12.7%
| | Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2498 | Microsoft | critical | 9.3 | 12.7%
| | Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2494 | Microsoft | critical | 9.3 | 14.8%
| | Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to execute arbitr… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2493 | Microsoft | critical | 9.3 | 20.8%
| | The (1) VBScript and (2) JScript engines in Microsoft Internet Explorer 8 allow remote attackers to … | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2492 | Microsoft | critical | 9.3 | 20.8%
| | Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2491 | Microsoft | critical | 9.3 | 20.8%
| | Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2490 | Microsoft | critical | 9.3 | 20.8%
| | Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2489 | Microsoft | medium | 4.3 | 8.7%
| | Microsoft Internet Explorer 11 allows remote attackers to gain privileges via a crafted web site, as… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2487 | Microsoft | critical | 9.3 | 20.8%
| | Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause … | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2486 | Microsoft | critical | 9.3 | 14.8%
| | Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to execute arbitr… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2485 | Microsoft | critical | 9.3 | 14.8%
| | Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2484 | Microsoft | medium | 6.4 | 21.0%
| | Microsoft Internet Explorer 10 and 11 uses an incorrect flag during certain filesystem accesses, whi… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-2483 | Microsoft | medium | 5.0 | 21.1%
| | Microsoft Internet Explorer 10 and 11 allows remote attackers to obtain sensitive information from p… | Sep 9, 2015 | May 6, 2026 |
| | CVE-2015-6259 | Cisco | critical | 9.4 | 1.7%
| | The JavaServer Pages (JSP) component in Cisco Integrated Management Controller (IMC) Supervisor befo… | Sep 4, 2015 | May 6, 2026 |
| | CVE-2015-5737 |  Fortinet | high | 7.2 | 0.1%
| | The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, (4) mdare64_52.sys, and (5) Fortishi… | Sep 3, 2015 | May 6, 2026 |
| | CVE-2015-5736 | Fortinet | high | 7.2 | 2.5%
| | The Fortishield.sys driver in Fortinet FortiClient before 5.2.4 allows local users to execute arbitr… | Sep 3, 2015 | May 6, 2026 |
| | CVE-2015-5735 | Fortinet | high | 7.2 | 0.1%
| | The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, and (4) mdare64_52.sys drivers in Fo… | Sep 3, 2015 | May 6, 2026 |
| | CVE-2015-4077 | Fortinet | low | 2.1 | 0.2%
| | The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, and (4) mdare64_52.sys drivers in Fo… | Sep 3, 2015 | May 6, 2026 |