| | CVE-2017-11799 | Microsoft | high | 7.5 | 78.7%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 201… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11798 | Microsoft | high | 7.5 | 20.5%
| | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an att… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11797 | Microsoft | high | 7.5 | 26.1%
| | ChakraCore allows an attacker to execute arbitrary code in the context of the current user, due to h… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11796 | Microsoft | high | 7.5 | 24.4%
| | ChakraCore and Microsoft Edge in Windows 10 1703 allows an attacker to execute arbitrary code in the… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11794 | Microsoft | medium | 4.3 | 12.8%
| | Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to obtain information to further comp… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11793 | Microsoft | high | 7.5 | 61.7%
| | Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Wi… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11792 | Microsoft | high | 7.5 | 24.4%
| | ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allow an attacker to execute arbitrary co… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11790 | Microsoft | medium | 4.3 | 12.8%
| | Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Wi… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11786 | Microsoft | high | 8.8 | 11.5%
| | Skype for Business in Microsoft Lync 2013 SP1 and Skype for Business 2016 allows an attacker to stea… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11777 | Microsoft | medium | 5.4 | 0.9%
| | Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allo… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11776 | Microsoft | high | 7.5 | 18.6%
| | Microsoft Outlook 2016 allows an attacker to obtain the email content of a user, due to how Outlook … | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11775 | Microsoft | medium | 5.4 | 0.9%
| | Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allo… | Oct 13, 2017 | May 13, 2026 |
| | CVE-2017-11774 | Microsoft | high | 7.8 | 84.6%
| ⚠ KEV | Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to execu… | Oct 13, 2017 | Apr 22, 2026 |
| | CVE-2016-8736 | Apache | critical | 9.8 | 6.1%
| | Apache OpenMeetings before 3.1.2 is vulnerable to Remote Code Execution via RMI deserialization atta… | Oct 12, 2017 | May 13, 2026 |
| | CVE-2017-5791 | HPE | critical | 9.8 | 64.3%
| | The doFilter method in UrlAccessController in HPE Intelligent Management Center (iMC) PLAT 7.2 E0403… | Oct 11, 2017 | May 13, 2026 |
| | CVE-2017-5789 | HPE | critical | 9.8 | 33.9%
| | HPE LoadRunner before 12.53 Patch 4 and HPE Performance Center before 12.53 Patch 4 allow remote att… | Oct 11, 2017 | May 13, 2026 |
| | CVE-2017-8994 | HPE | critical | 9.8 | 1.4%
| | A input validation vulnerability in HPE Operations Orchestration product all versions prior to 10.80… | Oct 10, 2017 | May 13, 2026 |
| | CVE-2017-12623 | Apache | medium | 6.5 | 0.3%
| | An authorized user could upload a template which contained malicious code and accessed sensitive fil… | Oct 10, 2017 | May 13, 2026 |
| | CVE-2017-5637 | Apache | high | 7.5 | 17.4%
| | Two four letter word commands "wchp/wchc" are CPU intensive and could cause spike of CPU utilization… | Oct 10, 2017 | May 13, 2026 |
| | CVE-2014-0030 | Apache | critical | 9.8 | 29.1%
| | The XML-RPC protocol support in Apache Roller before 5.0.3 allows attackers to conduct XML External … | Oct 10, 2017 | May 13, 2026 |
| | CVE-2017-14354 | HPE | medium | 6.1 | 0.5%
| | A remote cross-site scripting vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 1… | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-14353 | HPE | high | 8.8 | 1.4%
| | A remote code execution vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, … | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12269 | Cisco | medium | 5.4 | 0.4%
| | A vulnerability in the web UI of Cisco Spark Messaging Software could allow an authenticated, remote… | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12268 | Cisco | medium | 6.5 | 0.1%
| | A vulnerability in the Network Access Manager (NAM) of Cisco AnyConnect Secure Mobility Client could… | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12267 | Cisco | medium | 5.3 | 0.5%
| | A vulnerability in the Independent Computing Architecture (ICA) accelerator feature for the Cisco Wi… | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12266 | Cisco | medium | 4.2 | 0.0%
| | A vulnerability in the routine that loads DLL files in Cisco Meeting App for Windows could allow an … | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12265 | Cisco | medium | 6.1 | 0.2%
| | A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Sof… | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12264 | Cisco | medium | 5.3 | 1.0%
| | A vulnerability in the Web Admin Interface of Cisco Meeting Server could allow an unauthenticated, r… | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12263 | Cisco | high | 7.5 | 33.4%
| | A vulnerability in the web interface of Cisco License Manager software could allow an unauthenticate… | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12258 | Cisco | medium | 6.1 | 2.6%
| | A vulnerability in the web-based UI of Cisco Unified Communications Manager could allow an unauthent… | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12257 | Cisco | medium | 6.1 | 0.2%
| | A vulnerability in the web framework of Cisco WebEx Meetings Server could allow an unauthenticated, … | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12256 | Cisco | medium | 6.5 | 0.3%
| | A vulnerability in the Akamai Connect feature of Cisco Wide Area Application Services (WAAS) Applian… | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12245 | Cisco | high | 8.6 | 0.7%
| | A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could al… | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-12244 | Cisco | high | 8.6 | 0.1%
| | A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software … | Oct 5, 2017 | May 13, 2026 |
| | CVE-2017-9792 | Apache | medium | 6.5 | 0.2%
| | In Apache Impala (incubating) before 2.10.0, a malicious user with "ALTER" permissions on an Impala … | Oct 4, 2017 | May 13, 2026 |
| | CVE-2017-12617 | Apache | high | 8.1 | 94.4%
| ⚠ KEV | When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.… | Oct 4, 2017 | Apr 21, 2026 |
| | CVE-2017-9797 | Apache | medium | 6.5 | 0.2%
| | When an Apache Geode cluster before v1.2.1 is operating in secure mode, an unauthenticated client ca… | Oct 3, 2017 | May 13, 2026 |
| | CVE-2017-12620 | Apache | critical | 9.8 | 1.0%
| | When loading models or dictionaries that contain XML it is possible to perform an XXE attack, since … | Oct 3, 2017 | May 13, 2026 |
| | CVE-2016-6806 | Apache | high | 8.8 | 0.2%
| | Apache Wicket 6.x before 6.25.0, 7.x before 7.5.0, and 8.0.0-M1 provide a CSRF prevention measure th… | Oct 3, 2017 | May 13, 2026 |
| | CVE-2014-0043 | Apache | medium | 5.3 | 1.5%
| | In Apache Wicket 1.5.10 or 6.13.0, by issuing requests to special urls handled by Wicket, it is poss… | Oct 3, 2017 | May 13, 2026 |
| | CVE-2017-9794 | Apache | medium | 4.3 | 0.1%
| | When a cluster is operating in secure mode, a user with read privileges for specific data regions ca… | Sep 30, 2017 | May 13, 2026 |
| | CVE-2017-14352 | HPE | medium | 6.1 | 0.4%
| | A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10… | Sep 30, 2017 | May 13, 2026 |
| | CVE-2017-14351 | HPE | critical | 9.8 | 2.6%
| | A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10… | Sep 30, 2017 | May 13, 2026 |
| | CVE-2017-14350 | HPE | critical | 9.8 | 1.1%
| | A potential security vulnerability has been identified in HPE Application Performance Management (BS… | Sep 30, 2017 | May 13, 2026 |
| | CVE-2017-14349 | HPE | critical | 9.8 | 0.8%
| | An authentication vulnerability in HPE SiteScope product versions 11.2x and 11.3x, allows read-only … | Sep 30, 2017 | May 13, 2026 |
| | CVE-2017-13991 | HPE | medium | 5.3 | 0.6%
| | An information leakage vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior… | Sep 30, 2017 | May 13, 2026 |
| | CVE-2017-13990 | HPE | medium | 5.3 | 0.6%
| | An information leakage vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior… | Sep 30, 2017 | May 13, 2026 |
| | CVE-2017-13989 | HPE | high | 8.1 | 0.3%
| | An improper access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version p… | Sep 30, 2017 | May 13, 2026 |
| | CVE-2017-13988 | HPE | medium | 6.5 | 0.3%
| | An improper access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version p… | Sep 30, 2017 | May 13, 2026 |
| | CVE-2017-13987 | HPE | medium | 6.5 | 0.3%
| | An insufficient access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x versi… | Sep 30, 2017 | May 13, 2026 |