| | CVE-2017-5661 | Apache | high | 7.3 | 2.4%
| | In Apache FOP before 2.2, files lying on the filesystem of the server which uses FOP can be revealed… | Apr 18, 2017 | May 13, 2026 |
| | CVE-2017-5645 | Apache | critical | 9.8 | 94.0%
| | In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive s… | Apr 17, 2017 | May 13, 2026 |
| | CVE-2017-5659 | Apache | high | 7.5 | 2.0%
| | Apache Traffic Server before 6.2.1 generates a coredump when there is a mismatch between content len… | Apr 17, 2017 | May 13, 2026 |
| | CVE-2016-5396 | Apache | high | 7.5 | 1.8%
| | Apache Traffic Server 6.0.0 to 6.2.0 are affected by an HPACK Bomb Attack. | Apr 17, 2017 | May 13, 2026 |
| | CVE-2017-5651 | Apache | critical | 9.8 | 6.1%
| | In Apache Tomcat 9.0.0.M1 to 9.0.0.M18 and 8.5.0 to 8.5.12, the refactoring of the HTTP connectors i… | Apr 17, 2017 | May 13, 2026 |
| | CVE-2017-5650 | Apache | high | 7.5 | 12.7%
| | In Apache Tomcat 9.0.0.M1 to 9.0.0.M18 and 8.5.0 to 8.5.12, the handling of an HTTP/2 GOAWAY frame f… | Apr 17, 2017 | May 13, 2026 |
| | CVE-2017-5648 | Apache | critical | 9.1 | 21.8%
| | While investigating bug 60718, it was noticed that some calls to application listeners in Apache Tom… | Apr 17, 2017 | May 13, 2026 |
| | CVE-2017-5647 | Apache | high | 7.5 | 2.3%
| | A bug in the handling of the pipelined requests in Apache Tomcat 9.0.0.M1 to 9.0.0.M18, 8.5.0 to 8.5… | Apr 17, 2017 | May 13, 2026 |
| | CVE-2016-4970 | Apache | high | 7.5 | 8.2%
| | handler/ssl/OpenSslEngine.java in Netty 4.0.x before 4.0.37.Final and 4.1.x before 4.1.1.Final allow… | Apr 13, 2017 | May 13, 2026 |
| | CVE-2016-6808 | Apache | critical | 9.8 | 29.5%
| | Buffer overflow in Apache Tomcat Connectors (mod_jk) before 1.2.42. | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-3125 | Fortinet | medium | 6.1 | 0.6%
| | An unauthenticated XSS vulnerability with FortiMail 5.0.0 - 5.2.9 and 5.3.0 - 5.3.8 could allow an a… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0210 | Microsoft | high | 8.8 | 42.1%
| ⚠ KEV | An elevation of privilege vulnerability exists when Internet Explorer does not properly enforce cros… | Apr 12, 2017 | Apr 22, 2026 |
| | CVE-2017-0208 | Microsoft | medium | 4.3 | 14.9%
| | An information disclosure vulnerability exists in Microsoft Edge when the Chakra scripting engine do… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0207 | Microsoft | medium | 6.5 | 11.7%
| | Microsoft Outlook for Mac 2011 allows remote attackers to spoof web content via a crafted email with… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0205 | Microsoft | high | 7.5 | 18.8%
| | A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memo… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0204 | Microsoft | medium | 5.5 | 11.7%
| | Microsoft Outlook 2007 SP3, Microsoft Outlook 2010 SP2, Microsoft Outlook 2013 SP1, and Microsoft Ou… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0203 | Microsoft | medium | 4.3 | 4.5%
| | A vulnerability exists in Microsoft Edge when the Edge Content Security Policy (CSP) fails to proper… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0202 | Microsoft | high | 7.5 | 61.9%
| | A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in m… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0201 | Microsoft | high | 7.5 | 23.9%
| | A remote code execution vulnerability exists in Internet Explorer in the way that the JScript and VB… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0200 | Microsoft | high | 7.5 | 29.4%
| | A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memo… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0199 | Microsoft | high | 7.8 | 94.3%
| ⚠ KEV | Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 20… | Apr 12, 2017 | Apr 22, 2026 |
| | CVE-2017-0197 | Microsoft | high | 7.8 | 27.8%
| | Microsoft OneNote 2007 SP3 and Microsoft OneNote 2010 SP2 allow remote attackers to execute arbitrar… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0195 | Microsoft | medium | 5.4 | 1.0%
| | Microsoft Excel Services on Microsoft SharePoint Server 2010 SP1 and SP2, Microsoft Excel Web Apps 2… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0194 | Microsoft | medium | 5.5 | 44.2%
| | Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, and Office Compatibility Pack SP2 allow remote a… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0160 | Microsoft | high | 7.8 | 13.0%
| | Microsoft .NET Framework 2.0, 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allows an attacker with access t… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0106 | Microsoft | high | 7.8 | 10.8%
| | Microsoft Excel 2007 SP3, Microsoft Outlook 2010 SP2, Microsoft Outlook 2013 SP1, and Microsoft Outl… | Apr 12, 2017 | May 13, 2026 |
| | CVE-2017-0093 | Microsoft | high | 7.5 | 21.4%
| | A remote code execution vulnerability in Microsoft Edge exists in the way that the Scripting Engine … | Apr 12, 2017 | May 13, 2026 |
| | CVE-2016-0779 | Apache | critical | 9.8 | 5.0%
| | The EjbObjectInputStream class in Apache TomEE before 1.7.4 and 7.x before 7.0.0-M3 allows remote at… | Apr 11, 2017 | May 13, 2026 |
| | CVE-2016-7467 | F5 | medium | 5.3 | 1.6%
| | The TMM SSO plugin in F5 BIG-IP APM 12.0.0 - 12.1.1, 11.6.0 - 11.6.1 HF1, 11.5.4 - 11.5.4 HF2, when … | Apr 11, 2017 | May 13, 2026 |
| | CVE-2016-6811 | Apache | high | 8.8 | 0.5%
| | In Apache Hadoop 2.x before 2.7.4, a user who can escalate to yarn user can possibly run arbitrary c… | Apr 11, 2017 | May 13, 2026 |
| | CVE-2017-5607 | Splunk | low | 3.5 | 9.0%
| | Splunk Enterprise 5.0.x before 5.0.18, 6.0.x before 6.0.14, 6.1.x before 6.1.13, 6.2.x before 6.2.13… | Apr 10, 2017 | May 13, 2026 |
| | CVE-2016-6805 | Apache | medium | 5.9 | 0.9%
| | Apache Ignite before 1.9 allows man-in-the-middle attackers to read arbitrary files via XXE in modif… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-6604 | Cisco | medium | 6.1 | 0.3%
| | A vulnerability in the web interface of Cisco Integrated Management Controller (IMC) Software could … | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-6602 | Cisco | medium | 4.4 | 0.3%
| | A vulnerability in the CLI of Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Ser… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-6601 | Cisco | high | 7.1 | 0.3%
| | A vulnerability in the CLI of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-6600 | Cisco | high | 7.8 | 0.4%
| | A vulnerability in the CLI of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-6598 | Cisco | medium | 6.7 | 0.0%
| | A vulnerability in the debug plug-in functionality of the Cisco Unified Computing System (UCS) Manag… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-6597 | Cisco | high | 7.8 | 0.4%
| | A vulnerability in the local-mgmt CLI command of the Cisco Unified Computing System (UCS) Manager, C… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-3889 | Cisco | medium | 6.1 | 0.3%
| | A vulnerability in the web interface of the Cisco Registered Envelope Service could allow an unauthe… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-3888 | Cisco | medium | 5.4 | 0.2%
| | A vulnerability in the web-based management interface of Cisco Unified Communications Manager could … | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-3887 | Cisco | medium | 5.9 | 0.6%
| | A vulnerability in the detection engine that handles Secure Sockets Layer (SSL) packets for Cisco Fi… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-3886 | Cisco | medium | 4.9 | 0.2%
| | A vulnerability in the Cisco Unified Communications Manager web interface could allow an authenticat… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-3885 | Cisco | medium | 5.9 | 0.5%
| | A vulnerability in the detection engine reassembly of Secure Sockets Layer (SSL) packets for Cisco F… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-3884 | Cisco | medium | 6.5 | 0.2%
| | A vulnerability in the web interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Ne… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-3848 | Cisco | medium | 6.1 | 0.3%
| | A vulnerability in the HTTP web-based management interface of Cisco Prime Infrastructure could allow… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2017-3817 | Cisco | medium | 4.3 | 0.1%
| | A vulnerability in the role-based resource checking functionality of Cisco Unified Computing System … | Apr 7, 2017 | May 13, 2026 |
| | CVE-2016-9197 | Cisco | medium | 6.7 | 0.1%
| | A vulnerability in the CLI command parser of the Cisco Mobility Express 2800 and 3800 Series Wireles… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2016-9195 | Cisco | medium | 5.3 | 0.4%
| | A vulnerability in RADIUS Change of Authorization (CoA) request processing in the Cisco Wireless LAN… | Apr 7, 2017 | May 13, 2026 |
| | CVE-2016-8735 | Apache | critical | 9.8 | 93.8%
| ⚠ KEV | Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.… | Apr 6, 2017 | Apr 21, 2026 |
| | CVE-2016-6809 | Apache | critical | 9.8 | 7.0%
| | Apache Tika before 1.14 allows Java code execution for serialized objects embedded in MATLAB files. … | Apr 6, 2017 | May 13, 2026 |