| | CVE-2016-7249 | Microsoft | high | 8.8 | 16.6%
| | Microsoft SQL Server 2016 does not properly perform a cast of an unspecified pointer, which allows r… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7245 | Microsoft | high | 7.8 | 30.0%
| | Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, and Office 2016 all… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7244 | Microsoft | medium | 5.5 | 16.7%
| | Microsoft Office 2007 SP3 allows remote attackers to cause a denial of service (application hang) vi… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7243 | Microsoft | high | 7.5 | 17.2%
| | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7242 | Microsoft | high | 7.5 | 15.2%
| | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7241 | Microsoft | high | 7.5 | 63.8%
| | Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code o… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7240 | Microsoft | high | 7.5 | 73.6%
| | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7239 | Microsoft | low | 3.1 | 13.5%
| | The RegEx class in the XSS filter in Microsoft Internet Explorer 9 through 11 and Microsoft Edge all… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7236 | Microsoft | high | 7.8 | 44.1%
| | Microsoft Excel 2010 SP2, Excel for Mac 2011, Excel 2016 for Mac, and Excel Services on SharePoint S… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7235 | Microsoft | high | 7.8 | 30.0%
| | Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, and Offi… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7234 | Microsoft | high | 7.8 | 48.4%
| | Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for Mac 2… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7233 | Microsoft | medium | 6.5 | 14.6%
| | Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, Word Vie… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7232 | Microsoft | high | 7.8 | 40.6%
| | Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, and Office Compatibility Pac… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7231 | Microsoft | high | 7.8 | 30.0%
| | Microsoft Excel 2007 SP3, Excel for Mac 2011, Office Compatibility Pack SP3, and Excel Viewer allow … | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7230 | Microsoft | high | 7.8 | 26.9%
| | Microsoft PowerPoint 2010 SP2, PowerPoint Viewer, and Office Web Apps 2010 SP2 allow remote attacker… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7229 | Microsoft | high | 7.8 | 29.0%
| | Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for M… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7228 | Microsoft | high | 7.8 | 31.6%
| | Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for M… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7227 | Microsoft | low | 3.1 | 16.1%
| | The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote at… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7213 | Microsoft | high | 7.8 | 29.0%
| | Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for M… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7209 | Microsoft | medium | 5.3 | 6.8%
| | Microsoft Edge allows remote attackers to spoof web content via a crafted web site, aka "Microsoft E… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7208 | Microsoft | high | 7.5 | 15.2%
| | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7204 | Microsoft | low | 3.1 | 18.6%
| | Microsoft Edge allows remote attackers to access arbitrary "My Documents" files via a crafted web si… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7203 | Microsoft | high | 7.5 | 73.7%
| | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7202 | Microsoft | high | 7.5 | 76.9%
| | The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote at… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7201 | Microsoft | high | 8.8 | 90.1%
| ⚠ KEV | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | Apr 22, 2026 |
| | CVE-2016-7200 | Microsoft | high | 8.8 | 88.2%
| ⚠ KEV | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrar… | Nov 10, 2016 | Apr 22, 2026 |
| | CVE-2016-7199 | Microsoft | low | 3.1 | 16.6%
| | Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to bypass the Sam… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7198 | Microsoft | high | 7.5 | 20.5%
| | Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7196 | Microsoft | high | 7.5 | 20.5%
| | Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-7195 | Microsoft | high | 7.5 | 20.5%
| | Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr… | Nov 10, 2016 | May 6, 2026 |
| | CVE-2016-6454 | Cisco | medium | 6.5 | 0.2%
| | A cross-site request forgery (CSRF) vulnerability in the web interface of the Cisco Hosted Collabora… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6453 | Cisco | high | 7.3 | 0.3%
| | A vulnerability in the web framework code of Cisco Identity Services Engine (ISE) could allow an aut… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6452 | Cisco | critical | 9.8 | 1.1%
| | A vulnerability in the web-based graphical user interface (GUI) of Cisco Prime Home could allow an u… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6451 | Cisco | medium | 6.1 | 0.5%
| | Multiple vulnerabilities in the web framework code of the Cisco Prime Collaboration Provisioning cou… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6448 | Cisco | critical | 9.8 | 7.6%
| | A vulnerability in the Session Description Protocol (SDP) parser of Cisco Meeting Server could allow… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6447 | Cisco | critical | 9.8 | 7.6%
| | A vulnerability in Cisco Meeting Server and Meeting App could allow an unauthenticated, remote attac… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6430 | Cisco | high | 7.8 | 0.1%
| | A vulnerability in the command-line interface of the Cisco IP Interoperability and Collaboration Sys… | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-6429 | Cisco | medium | 6.1 | 0.3%
| | A vulnerability in the web framework code of the Cisco IP Interoperability and Collaboration System … | Nov 3, 2016 | May 6, 2026 |
| | CVE-2016-4396 | HPE | high | 7.5 | 1.5%
| | HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-4395 | HPE | high | 7.5 | 1.5%
| | HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-4394 | HPE | medium | 6.5 | 0.5%
| | HPE System Management Homepage before v7.6 allows remote attackers to obtain sensitive information v… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-4393 | HPE | medium | 5.4 | 0.3%
| | HPE System Management Homepage before v7.6 allows "remote authenticated" attackers to obtain sensiti… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6397 | Cisco | critical | 9.8 | 1.0%
| | A vulnerability in the interdevice communications interface of the Cisco IP Interoperability and Col… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6372 | Cisco | high | 7.5 | 0.3%
| | A vulnerability in the email message and content filtering for malformed Multipurpose Internet Mail … | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6360 | Cisco | high | 7.5 | 1.4%
| | A vulnerability in Advanced Malware Protection (AMP) for Cisco Email Security Appliances (ESA) and W… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6358 | Cisco | high | 7.5 | 1.0%
| | A vulnerability in local FTP to the Cisco Email Security Appliance (ESA) could allow an unauthentica… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6357 | Cisco | high | 7.5 | 0.2%
| | A vulnerability in the configured security policies, including drop email filtering, in Cisco AsyncO… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-6356 | Cisco | high | 7.5 | 0.8%
| | A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Sec… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-1486 | Cisco | high | 7.5 | 0.8%
| | A vulnerability in the email attachment scanning functionality of the Advanced Malware Protection (A… | Oct 28, 2016 | May 6, 2026 |
| | CVE-2016-1481 | Cisco | high | 7.5 | 0.8%
| | A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Sec… | Oct 28, 2016 | May 6, 2026 |