| | CVE-2015-2449 |  Microsoft | medium | 4.3 | 16.6%
| | Microsoft Internet Explorer 7 through 11 and Edge allow remote attackers to bypass the ASLR protecti… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2448 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a de… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2447 | Microsoft | critical | 9.3 | 28.8%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2446 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code or cause a … | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2445 | Microsoft | medium | 4.3 | 14.9%
| | Microsoft Internet Explorer 10 allows remote attackers to bypass the ASLR protection mechanism via a… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2444 | Microsoft | critical | 9.3 | 25.6%
| | Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause … | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2443 | Microsoft | critical | 9.3 | 16.3%
| | Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a d… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2442 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 8 through 11 and Edge allow remote attackers to execute arbitrary code o… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2441 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 7 through 11 and Edge allow remote attackers to execute arbitrary code o… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-3253 |  Apache | critical | 9.8 | 69.7%
| | The MethodClosure class in runtime/MethodClosure.java in Apache Groovy 1.7.0 through 2.4.3 allows re… | Aug 13, 2015 | May 6, 2026 |
| | CVE-2015-3187 | Apache | medium | 4.0 | 0.9%
| | The svn_repos_trace_node_locations function in Apache Subversion before 1.7.21 and 1.8.x before 1.8.… | Aug 12, 2015 | May 6, 2026 |
| | CVE-2015-3184 | Apache | medium | 5.0 | 17.0%
| | mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache ht… | Aug 12, 2015 | May 6, 2026 |
| | CVE-2015-4295 |  Cisco | medium | 4.0 | 0.2%
| | The Prime Collaboration Deployment component in Cisco Unified Communications Manager 10.5(3.10000.9)… | Aug 1, 2015 | May 6, 2026 |
| | CVE-2015-4294 | Cisco | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco IM and Presence Service before 10.5 MR1 allows rem… | Aug 1, 2015 | May 6, 2026 |
| | CVE-2015-4292 | Cisco | medium | 4.3 | 0.4%
| | Cross-site scripting (XSS) vulnerability in the management interface in Cisco Prime Central for Host… | Aug 1, 2015 | May 6, 2026 |
| | CVE-2015-4289 | Cisco | medium | 6.4 | 0.5%
| | Directory traversal vulnerability in Cisco AnyConnect Secure Mobility Client 4.0(2049) allows remote… | Aug 1, 2015 | May 6, 2026 |
| | CVE-2015-4290 | Cisco | medium | 4.9 | 0.1%
| | The kernel extension in Cisco AnyConnect Secure Mobility Client 4.0(2049) on OS X allows local users… | Jul 29, 2015 | May 6, 2026 |
| | CVE-2015-4286 | Cisco | medium | 5.0 | 0.1%
| | The web framework in Cisco UCS Central Software 1.3(0.99) allows remote attackers to read arbitrary … | Jul 29, 2015 | May 6, 2026 |
| | CVE-2015-0732 | Cisco | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco AsyncOS on the Web Security Appliance (WSA) 9.0.0-… | Jul 29, 2015 | May 6, 2026 |
| | CVE-2015-4262 | Cisco | critical | 10.0 | 0.4%
| | The password-change feature in Cisco Unified MeetingPlace Web Conferencing before 8.5(5) MR3 and 8.6… | Jul 24, 2015 | May 6, 2026 |
| | CVE-2015-4281 | Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server 2.5 MR1 allows remote… | Jul 22, 2015 | May 6, 2026 |
| | CVE-2015-2134 |  HPE | medium | 6.0 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 7.5.0 … | Jul 21, 2015 | May 6, 2026 |
| | CVE-2015-4283 | Cisco | high | 7.8 | 0.4%
| | Cisco Videoscape Policy Resource Manager (PRM) 3.5.4 allows remote attackers to cause a denial of se… | Jul 21, 2015 | May 6, 2026 |
| | CVE-2015-4279 | Cisco | high | 7.2 | 0.3%
| | The Manager component in Cisco Unified Computing System (UCS) 2.2(3b) on B Blade Server devices allo… | Jul 20, 2015 | May 6, 2026 |
| | CVE-2015-3185 | Apache | medium | 4.3 | 9.5%
| | The ap_some_auth_required function in server/request.c in the Apache HTTP Server 2.4.x before 2.4.14… | Jul 20, 2015 | May 6, 2026 |
| | CVE-2015-3183 | Apache | medium | 5.0 | 28.3%
| | The chunked transfer coding implementation in the Apache HTTP Server before 2.4.14 does not properly… | Jul 20, 2015 | May 6, 2026 |
| | CVE-2015-0253 | Apache | medium | 5.0 | 10.6%
| | The read_request_line function in server/protocol.c in the Apache HTTP Server 2.4.12 does not initia… | Jul 20, 2015 | May 6, 2026 |
| | CVE-2015-2418 | Microsoft | medium | 6.9 | 1.1%
| | Race condition in Microsoft Malicious Software Removal Tool (MSRT) before 5.26 allows local users to… | Jul 20, 2015 | May 6, 2026 |
| | CVE-2015-4280 | Cisco | medium | 5.0 | 0.3%
| | Cisco Prime Collaboration Assurance 10.0 allows remote attackers to cause a denial of service (HTTP … | Jul 18, 2015 | May 6, 2026 |
| | CVE-2015-0725 | Cisco | high | 7.8 | 0.2%
| | Cisco Videoscape Distribution Suite Service Broker (aka VDS-SB), when a VDSM configuration on UCS is… | Jul 16, 2015 | May 6, 2026 |
| | CVE-2015-4276 | Cisco | medium | 6.5 | 1.2%
| | Cisco WebEx Meetings Server 2.5MR1 allows remote authenticated users to execute arbitrary code via a… | Jul 16, 2015 | May 6, 2026 |
| | CVE-2015-4275 | Cisco | medium | 5.0 | 0.5%
| | The Packet Data Network Gateway (aka PGW) component on Cisco ASR 5000 devices with software 18.0.0.5… | Jul 16, 2015 | May 6, 2026 |
| | CVE-2015-4274 | Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified Intelligence C… | Jul 16, 2015 | May 6, 2026 |
| | CVE-2015-4266 | Cisco | medium | 4.3 | 0.2%
| | The web interface in Cisco Identity Services Engine (ISE) 1.1(4.1), 1.3(106.146), and 1.3(120.135) d… | Jul 16, 2015 | May 6, 2026 |
| | CVE-2015-4637 |  F5 | medium | 4.3 | 0.4%
| | The REST API in F5 BIG-IQ Cloud, Device, and Security 4.4.0 and 4.5.0 before HF2 and ADC 4.5.0 befor… | Jul 16, 2015 | May 6, 2026 |
| | CVE-2015-1831 | Apache | high | 7.5 | 4.5%
| | The default exclude patterns (excludeParams) in Apache Struts 2.3.20 allow remote attackers to "comp… | Jul 16, 2015 | May 6, 2026 |
| | CVE-2015-4271 | Cisco | medium | 6.4 | 0.4%
| | Cisco TelePresence TC before 7.3.4 on Integrator C devices allows remote attackers to bypass authent… | Jul 15, 2015 | May 6, 2026 |
| | CVE-2015-4267 | Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Identity Services Engi… | Jul 15, 2015 | May 6, 2026 |
| | CVE-2015-4273 | Cisco | medium | 5.0 | 0.5%
| | The Packet Data Network Gateway (aka PGW) component on Cisco ASR 5000 devices with software 15.0(912… | Jul 15, 2015 | May 6, 2026 |
| | CVE-2015-1763 | Microsoft | high | 8.5 | 10.7%
| | Microsoft SQL Server 2008 SP3 and SP4, 2008 R2 SP2 and SP3, 2012 SP1 and SP2, and 2014 does not prev… | Jul 14, 2015 | May 6, 2026 |
| | CVE-2015-1762 | Microsoft | high | 7.1 | 2.2%
| | Microsoft SQL Server 2008 SP3 and SP4, 2008 R2 SP2 and SP3, 2012 SP1 and SP2, and 2014, when transac… | Jul 14, 2015 | May 6, 2026 |
| | CVE-2015-1761 | Microsoft | medium | 6.5 | 6.6%
| | Microsoft SQL Server 2008 SP3 and SP4, 2008 R2 SP2 and SP3, 2012 SP1 and SP2, and 2014 uses an incor… | Jul 14, 2015 | May 6, 2026 |
| | CVE-2015-2425 | Microsoft | high | 8.8 | 34.1%
| ⚠ KEV | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Jul 14, 2015 | Apr 22, 2026 |
| | CVE-2015-2424 | Microsoft | high | 8.8 | 76.5%
| ⚠ KEV | Microsoft PowerPoint 2007 SP3, Word 2007 SP3, PowerPoint 2010 SP2, Word 2010 SP2, PowerPoint 2013 SP… | Jul 14, 2015 | Apr 22, 2026 |
| | CVE-2015-2422 | Microsoft | critical | 9.3 | 28.1%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause … | Jul 14, 2015 | May 6, 2026 |
| | CVE-2015-2421 | Microsoft | medium | 4.3 | 14.9%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to bypass the ASLR protection mecha… | Jul 14, 2015 | May 6, 2026 |
| | CVE-2015-2419 | Microsoft | high | 8.8 | 69.4%
| ⚠ KEV | JScript 9 in Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code… | Jul 14, 2015 | Apr 22, 2026 |
| | CVE-2015-2415 | Microsoft | critical | 9.3 | 37.5%
| | Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, and Office Compatibilit… | Jul 14, 2015 | May 6, 2026 |
| | CVE-2015-2414 | Microsoft | medium | 4.3 | 23.1%
| | Microsoft Internet Explorer 8 through 11 allows remote attackers to obtain sensitive browsing-histor… | Jul 14, 2015 | May 6, 2026 |
| | CVE-2015-2413 | Microsoft | medium | 4.3 | 25.8%
| | Microsoft Internet Explorer 6 through 11 allows remote attackers to determine the existence of local… | Jul 14, 2015 | May 6, 2026 |