| | CVE-2017-12225 | Cisco | medium | 6.5 | 0.4%
| | A vulnerability in the web functionality of the Cisco Prime LAN Management Solution could allow an a… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12224 | Cisco | medium | 6.5 | 0.4%
| | A vulnerability in the ability for guest users to join meetings via a hyperlink with Cisco Meeting S… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12221 | Cisco | medium | 5.4 | 0.4%
| | A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticat… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12220 | Cisco | medium | 6.1 | 0.1%
| | A vulnerability in the web-based management interface of Cisco Firepower Management Center could all… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12216 | Cisco | high | 8.8 | 1.6%
| | A vulnerability in the web-based user interface of Cisco SocialMiner could allow an unauthenticated,… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12212 | Cisco | medium | 6.1 | 0.3%
| | A vulnerability in the web framework of Cisco Unity Connection could allow an unauthenticated, remot… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2015-3250 | Apache | high | 7.5 | 2.0%
| | Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecifie… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2016-3086 | Apache | critical | 9.8 | 0.4%
| | The YARN NodeManager in Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3 can leak the passwor… | Sep 5, 2017 | May 13, 2026 |
| | CVE-2017-3898 | Trellix | medium | 5.9 | 7.2%
| | A man-in-the-middle attack vulnerability in the non-certificate-based authentication mechanism in Mc… | Sep 1, 2017 | May 13, 2026 |
| | CVE-2017-3897 | Trellix | critical | 9.8 | 4.1%
| | A Code Injection vulnerability in the non-certificate-based authentication mechanism in McAfee Live … | Sep 1, 2017 | May 13, 2026 |
| | CVE-2016-5001 | Apache | medium | 5.5 | 0.1%
| | This is an information disclosure vulnerability in Apache Hadoop before 2.6.4 and 2.7.x before 2.7.2… | Aug 30, 2017 | May 13, 2026 |
| | CVE-2016-6800 | Apache | medium | 6.1 | 1.3%
| | The default configuration of the Apache OFBiz framework offers a blog functionality. Different users… | Aug 30, 2017 | May 13, 2026 |
| | CVE-2016-4462 | Apache | high | 8.8 | 0.5%
| | By manipulating the URL parameter externalLoginKey, a malicious, logged in user could pass valid Fre… | Aug 30, 2017 | May 13, 2026 |
| | CVE-2017-3163 | Apache | high | 7.5 | 11.9%
| | When using the Index Replication feature, Apache Solr nodes can pull index files from a master/leade… | Aug 30, 2017 | May 13, 2026 |
| | CVE-2017-3155 | Apache | medium | 6.1 | 1.9%
| | Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to cross frame scr… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2017-3154 | Apache | high | 7.5 | 0.8%
| | Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included stack trac… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2017-3153 | Apache | medium | 6.1 | 1.4%
| | Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Reflected XSS i… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2017-3152 | Apache | medium | 6.1 | 1.4%
| | Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to DOM XSS in the … | Aug 29, 2017 | May 13, 2026 |
| | CVE-2017-3151 | Apache | medium | 6.1 | 1.0%
| | Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Stored Cross-Si… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2017-3150 | Apache | medium | 6.1 | 1.0%
| | Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating use cookies that could be accessible to … | Aug 29, 2017 | May 13, 2026 |
| | CVE-2016-8752 | Apache | high | 7.5 | 1.0%
| | Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allow access to… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2015-5209 | Apache | high | 7.5 | 1.4%
| | Apache Struts 2.x before 2.3.24.1 allows remote attackers to manipulate Struts internals, alter user… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2016-4460 | Apache | critical | 9.8 | 1.1%
| | Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication. | Aug 22, 2017 | May 13, 2026 |
| | CVE-2015-5258 | VMware | high | 8.8 | 0.2%
| | Cross-site request forgery (CSRF) vulnerability in springframework-social before 1.1.3. | Aug 22, 2017 | May 13, 2026 |
| | CVE-2017-6790 | Cisco | medium | 6.8 | 1.8%
| | A vulnerability in the Session Initiation Protocol (SIP) on the Cisco TelePresence Video Communicati… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6788 | Cisco | medium | 6.1 | 0.2%
| | The WebLaunch functionality of Cisco AnyConnect Secure Mobility Client Software contains a vulnerabi… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6786 | Cisco | medium | 6.3 | 0.1%
| | A vulnerability in Cisco Elastic Services Controller could allow an authenticated, local, unprivileg… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6785 | Cisco | medium | 4.3 | 0.2%
| | A vulnerability in configuration modification permissions validation for Cisco Unified Communication… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6783 | Cisco | medium | 4.3 | 0.3%
| | A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6782 | Cisco | medium | 5.4 | 0.2%
| | A vulnerability in the administrative web interface of Cisco Prime Infrastructure could allow an aut… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6781 | Cisco | medium | 5.3 | 0.1%
| | A vulnerability in the management of shell user accounts for Cisco Policy Suite (CPS) Software for C… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6778 | Cisco | medium | 6.5 | 0.2%
| | A vulnerability in the Elastic Services Controller (ESC) web interface of the Cisco Ultra Services P… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6777 | Cisco | medium | 4.9 | 0.2%
| | A vulnerability in the ConfD server of the Cisco Elastic Services Controller (ESC) could allow an au… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6776 | Cisco | medium | 6.1 | 0.2%
| | A vulnerability in the web framework of Cisco Elastic Services Controller (ESC) could allow an unaut… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6775 | Cisco | medium | 5.7 | 0.1%
| | A vulnerability in the CLI of Cisco ASR 5000 Series Aggregated Services Routers running the Cisco St… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6774 | Cisco | medium | 5.0 | 0.2%
| | A vulnerability in Cisco ASR 5000 Series Aggregated Services Routers running the Cisco StarOS operat… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6773 | Cisco | medium | 6.7 | 0.1%
| | A vulnerability in the CLI of Cisco ASR 5000 Series Aggregated Services Routers running the Cisco St… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6772 | Cisco | medium | 4.3 | 0.2%
| | A vulnerability in Cisco Elastic Services Controller (ESC) could allow an authenticated, remote atta… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6771 | Cisco | high | 7.5 | 0.4%
| | A vulnerability in the AutoVNF automation tool of the Cisco Ultra Services Framework could allow an … | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6768 | Cisco | high | 7.8 | 0.1%
| | A vulnerability in the build procedure for certain executable system files installed at boot time on… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6767 | Cisco | high | 7.1 | 0.9%
| | A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) could allow an authenti… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6710 | Cisco | high | 8.1 | 1.3%
| | A vulnerability in the Cisco Virtual Network Function (VNF) Element Manager could allow an authentic… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-8665 | Microsoft | high | 7.8 | 10.8%
| | The Xamarin.iOS update component on systems running macOS allows an attacker to run arbitrary code a… | Aug 15, 2017 | May 13, 2026 |
| | CVE-2017-9802 | Apache | medium | 6.1 | 0.6%
| | The Javascript method Sling.evalString() in Apache Sling Servlets Post before 2.3.22 uses the javasc… | Aug 14, 2017 | May 13, 2026 |
| | CVE-2017-9800 | Apache | critical | 9.8 | 59.1%
| | A maliciously constructed svn+ssh:// URL would cause Subversion clients before 1.8.19, 1.9.x before … | Aug 11, 2017 | May 13, 2026 |
| | CVE-2017-7675 | Apache | high | 7.5 | 3.7%
| | The HTTP/2 implementation in Apache Tomcat 9.0.0.M1 to 9.0.0.M21 and 8.5.0 to 8.5.15 bypassed a numb… | Aug 11, 2017 | May 13, 2026 |
| | CVE-2017-7674 | Apache | medium | 4.3 | 5.9%
| | The CORS Filter in Apache Tomcat 9.0.0.M1 to 9.0.0.M21, 8.5.0 to 8.5.15, 8.0.0.RC1 to 8.0.44 and 7.0… | Aug 11, 2017 | May 13, 2026 |
| | CVE-2016-6796 | Apache | high | 7.5 | 0.8%
| | A malicious web application running on Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1… | Aug 11, 2017 | May 13, 2026 |
| | CVE-2017-8658 | Microsoft | critical | 9.8 | 36.0%
| | A remote code execution vulnerability exists in the way that the Chakra JavaScript engine renders wh… | Aug 11, 2017 | May 13, 2026 |
| | CVE-2016-8745 | Apache | high | 7.5 | 10.9%
| | A bug in the error handling of the send file code for the NIO HTTP connector in Apache Tomcat 9.0.0.… | Aug 10, 2017 | May 13, 2026 |