| | CVE-2017-0303 | F5 | high | 7.5 | 2.4%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software… | Oct 27, 2017 | May 13, 2026 |
| | CVE-2012-1622 | Apache | critical | 9.8 | 2.9%
| | Apache OFBiz 10.04.x before 10.04.02 allows remote attackers to execute arbitrary code via unspecifi… | Oct 26, 2017 | May 13, 2026 |
| | CVE-2017-7732 | Fortinet | medium | 6.1 | 0.9%
| | A reflected Cross-Site Scripting (XSS) vulnerability in Fortinet FortiMail 5.1 and earlier, 5.2.0 th… | Oct 26, 2017 | May 13, 2026 |
| | CVE-2017-7341 | Fortinet | high | 7.2 | 2.5%
| | An OS Command Injection vulnerability in Fortinet FortiWLC 6.1-2 through 6.1-5, 7.0-7 through 7.0-10… | Oct 26, 2017 | May 13, 2026 |
| | CVE-2017-7335 | Fortinet | medium | 5.4 | 0.3%
| | A Cross-Site Scripting (XSS) vulnerability in Fortinet FortiWLC 6.1-x (6.1-2, 6.1-4 and 6.1-5); 7.0-… | Oct 26, 2017 | May 13, 2026 |
| | CVE-2014-0691 | Cisco | high | 7.3 | 0.2%
| | Cisco WebEx Meetings Server before 1.1 uses meeting IDs with insufficient entropy, which makes it ea… | Oct 24, 2017 | May 13, 2026 |
| | CVE-2017-12618 | Apache | medium | 4.7 | 0.9%
| | Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to validate the integrity of SDBM da… | Oct 24, 2017 | May 13, 2026 |
| | CVE-2017-12613 | Apache | high | 7.1 | 0.3%
| | When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month field value i… | Oct 24, 2017 | May 13, 2026 |
| | CVE-2010-2232 | Apache | high | 7.5 | 1.7%
| | In Apache Derby 10.1.2.1, 10.2.2.0, 10.3.1.4, and 10.4.1.3, Export processing may allow an attacker … | Oct 23, 2017 | May 13, 2026 |
| | CVE-2017-12317 | Cisco | medium | 6.7 | 0.0%
| | The Cisco AMP For Endpoints application allows an authenticated, local attacker to access a static k… | Oct 22, 2017 | May 13, 2026 |
| | CVE-2017-6165 | F5 | critical | 9.8 | 2.0%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 … | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6145 | F5 | high | 7.3 | 0.4%
| | iControl REST in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSaf… | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6144 | F5 | high | 7.4 | 0.2%
| | In F5 BIG-IP PEM 12.1.0 through 12.1.2 when downloading the Type Allocation Code (TAC) database file… | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6141 | F5 | medium | 5.9 | 0.6%
| | In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, and WebSafe 12.1.0 through 12.1.2, certa… | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-12628 | Apache | high | 7.8 | 0.1%
| | The JMX server embedded in Apache James, also used by the command line client is exposed to a java d… | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-5636 | Apache | critical | 9.8 | 1.2%
| | In Apache NiFi before 0.7.2 and 1.x before 1.1.2 in a cluster environment, the proxy chain serializa… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2017-5635 | Apache | high | 7.5 | 0.5%
| | In Apache NiFi before 0.7.2 and 1.x before 1.1.2 in a cluster environment, if an anonymous user requ… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2016-8748 | Apache | medium | 5.4 | 0.4%
| | In Apache NiFi before 1.0.1 and 1.1.x before 1.1.1, there is a cross-site scripting vulnerability in… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2017-12298 | Cisco | medium | 6.1 | 0.2%
| | A vulnerability in Cisco WebEx Meeting Center could allow an unauthenticated, remote attacker to con… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2017-12296 | Cisco | medium | 6.1 | 0.2%
| | A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to co… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2017-12293 | Cisco | high | 8.6 | 1.6%
| | A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to ca… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2017-12288 | Cisco | medium | 6.1 | 0.2%
| | A vulnerability in the web-based management interface of Cisco Unified Contact Center Express could … | Oct 19, 2017 | May 13, 2026 |
| | CVE-2017-12287 | Cisco | medium | 4.3 | 0.5%
| | A vulnerability in the cluster database (CDB) management component of Cisco Expressway Series Softwa… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2017-12286 | Cisco | medium | 5.5 | 0.1%
| | A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local attacker to… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2017-12285 | Cisco | medium | 5.3 | 77.5%
| | A vulnerability in the web interface of Cisco Network Analysis Module Software could allow an unauth… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2017-12284 | Cisco | medium | 5.5 | 0.1%
| | A vulnerability in the web interface of Cisco Jabber for Windows Client could allow an authenticated… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2017-12251 | Cisco | critical | 9.9 | 3.2%
| | A vulnerability in the web console of the Cisco Cloud Services Platform (CSP) 2100 could allow an au… | Oct 19, 2017 | May 13, 2026 |
| | CVE-2016-4461 | Apache | high | 8.8 | 1.7%
| | Apache Struts 2.x before 2.3.29 allows remote attackers to execute arbitrary code via a "%{}" sequen… | Oct 16, 2017 | May 13, 2026 |
| | CVE-2016-8734 | Apache | medium | 6.5 | 12.9%
| | Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1… | Oct 16, 2017 | May 13, 2026 |
| | CVE-2017-12629 | Apache | critical | 9.8 | 93.9%
| | Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting X… | Oct 14, 2017 | May 13, 2026 |
| | CVE-2016-6815 | Apache | medium | 6.5 | 0.5%
| | In Apache Ranger before 0.6.2, users with "keyadmin" role should not be allowed to change password f… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-8726 | Microsoft | medium | 4.3 | 10.5%
| | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an att… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11826 | Microsoft | high | 7.8 | 90.8%
| ⚠ KEV | Microsoft Office 2010, SharePoint Enterprise Server 2010, SharePoint Server 2010, Web Applications, … | Oct 13, 2017 | Apr 22, 2026 |
| | CVE-2017-11825 | Microsoft | high | 7.8 | 32.4%
| | Microsoft Office 2016 Click-to-Run (C2R) and Microsoft Office 2016 for Mac allow an attacker to use … | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11822 | Microsoft | high | 7.5 | 20.5%
| | Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Wi… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11821 | Microsoft | high | 7.5 | 24.4%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary c… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11820 | Microsoft | medium | 5.4 | 0.9%
| | Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allo… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11813 | Microsoft | high | 7.5 | 20.5%
| | Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11812 | Microsoft | high | 7.5 | 42.3%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allo… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11811 | Microsoft | high | 7.5 | 74.0%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 201… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11810 | Microsoft | high | 7.5 | 62.7%
| | Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Wi… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11809 | Microsoft | high | 7.5 | 78.7%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 201… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11808 | Microsoft | high | 7.5 | 24.4%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 201… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11807 | Microsoft | high | 7.5 | 24.4%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary c… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11806 | Microsoft | high | 7.5 | 24.4%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary c… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11805 | Microsoft | high | 7.5 | 24.4%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary c… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11804 | Microsoft | high | 7.5 | 20.5%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 201… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11802 | Microsoft | high | 7.5 | 78.7%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 201… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11801 | Microsoft | high | 7.5 | 26.1%
| | ChakraCore allows an attacker to execute arbitrary code in the context of the current user, due to h… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11800 | Microsoft | high | 7.5 | 20.5%
| | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows an attacker … | Oct 13, 2017 | May 13, 2026 |