| | CVE-2016-1497 | F5 | medium | 4.9 | 0.2%
| | The Configuration utility in F5 BIG-IP systems 11.0.x, 11.1.x, 11.2.x before 11.2.1 HF16, 11.3.x, 11… | Aug 26, 2016 | May 6, 2026 |
| | CVE-2016-6369 | Cisco | high | 7.8 | 0.1%
| | Cisco AnyConnect Secure Mobility Client before 4.2.05015 and 4.3.x before 4.3.02039 mishandles pathn… | Aug 25, 2016 | May 6, 2026 |
| | CVE-2016-6365 | Cisco | medium | 6.1 | 0.4%
| | Cross-site scripting (XSS) vulnerability in Cisco Firepower Management Center 4.10.3, 5.2.0, 5.3.0, … | Aug 23, 2016 | May 6, 2026 |
| | CVE-2016-6364 | Cisco | high | 7.5 | 0.7%
| | The User Data Services (UDS) API implementation in Cisco Unified Communications Manager 11.5 allows … | Aug 23, 2016 | May 6, 2026 |
| | CVE-2016-1484 | Cisco | high | 7.5 | 0.2%
| | Cisco WebEx Meetings Server 2.6 allows remote attackers to bypass intended access restrictions and o… | Aug 23, 2016 | May 6, 2026 |
| | CVE-2016-1477 | Cisco | medium | 6.5 | 0.2%
| | Cisco Connected Streaming Analytics 1.1.1 allows remote authenticated users to discover a notificati… | Aug 23, 2016 | May 6, 2026 |
| | CVE-2016-6363 | Cisco | medium | 6.5 | 0.8%
| | The rate-limit feature in the 802.11 protocol implementation on Cisco Aironet 1800, 2800, and 3800 d… | Aug 22, 2016 | May 6, 2026 |
| | CVE-2016-6362 | Cisco | high | 7.8 | 0.1%
| | Cisco Aironet 1800, 2800, and 3800 devices with software before 8.2.110.0, 8.2.12x before 8.2.121.0,… | Aug 22, 2016 | May 6, 2026 |
| | CVE-2016-6361 | Cisco | medium | 6.5 | 0.8%
| | The Aggregated MAC Protocol Data Unit (AMPDU) implementation on Cisco Aironet 1800, 2800, and 3800 d… | Aug 22, 2016 | May 6, 2026 |
| | CVE-2016-6359 | Cisco | medium | 6.1 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco Transport Gateway Installation Software 4.1(4.0) o… | Aug 22, 2016 | May 6, 2026 |
| | CVE-2016-4377 | HPE | high | 8.1 | 16.9%
| | HPE Smart Update in Storage Sizing Tool before 13.0, Converged Infrastructure Solution Sizer Suite (… | Aug 22, 2016 | May 6, 2026 |
| | CVE-2016-1485 | Cisco | medium | 6.1 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco Identity Services Engine 1.3(0.876) allows remote … | Aug 22, 2016 | May 6, 2026 |
| | CVE-2016-5736 | F5 | high | 7.5 | 1.1%
| | The default configuration of the IPsec IKE peer listener in F5 BIG-IP LTM, Analytics, APM, ASM, and … | Aug 19, 2016 | May 6, 2026 |
| | CVE-2016-3089 | Apache | medium | 6.1 | 0.9%
| | Cross-site scripting (XSS) vulnerability in the SWF panel in Apache OpenMeetings before 3.1.2 allows… | Aug 19, 2016 | May 6, 2026 |
| | CVE-2016-0760 | Apache | high | 8.8 | 0.7%
| | Multiple incomplete blacklist vulnerabilities in Apache Sentry before 1.7.0 allow remote authenticat… | Aug 19, 2016 | May 6, 2026 |
| | CVE-2015-8022 | F5 | high | 7.5 | 0.5%
| | The Configuration utility in F5 BIG-IP LTM, Analytics, APM, ASM, GTM, and Link Controller 11.x befor… | Aug 19, 2016 | May 6, 2026 |
| | CVE-2016-1458 | Cisco | high | 8.8 | 0.3%
| | The web-based GUI in Cisco Firepower Management Center 4.x and 5.x before 5.3.0.3, 5.3.1.x before 5.… | Aug 18, 2016 | May 6, 2026 |
| | CVE-2016-1457 | Cisco | high | 8.8 | 0.4%
| | The web-based GUI in Cisco Firepower Management Center 4.x and 5.x before 5.3.1.2 and 5.4.x before 5… | Aug 18, 2016 | May 6, 2026 |
| | CVE-2016-1365 | Cisco | high | 8.8 | 1.0%
| | The Grapevine update process in Cisco Application Policy Infrastructure Controller Enterprise Module… | Aug 18, 2016 | May 6, 2026 |
| | CVE-2016-3329 | Microsoft | medium | 5.3 | 32.7%
| | Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to determine the existence … | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3327 | Microsoft | medium | 5.3 | 32.7%
| | Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to obtain sensitive informa… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3326 | Microsoft | medium | 5.3 | 16.8%
| | Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to obtain sensitive informa… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3322 | Microsoft | high | 7.5 | 23.9%
| | Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code via a craft… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3321 | Microsoft | low | 2.5 | 28.7%
| | Microsoft Internet Explorer 10 and 11 load different files for attempts to open a file:// URL depend… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3319 | Microsoft | high | 7.0 | 37.2%
| | The PDF library in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 Gold and 1511,… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3318 | Microsoft | high | 7.8 | 30.0%
| | Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allow remote attackers to execute arb… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3317 | Microsoft | high | 7.8 | 30.0%
| | Microsoft Office 2010 SP2, Word 2007 SP3, Word 2010 SP2, Word for Mac 2011, Word 2016 for Mac, and W… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3316 | Microsoft | high | 7.8 | 50.3%
| | Microsoft Word 2013 SP1, 2013 RT SP1, 2016, and 2016 for Mac allow remote attackers to execute arbit… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3315 | Microsoft | medium | 5.5 | 34.7%
| | Microsoft OneNote 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016, and 2016 for Mac allow remote att… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3313 | Microsoft | high | 7.8 | 50.3%
| | Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016, Word 2016 for Mac, and Word Vi… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3304 | Microsoft | high | 7.8 | 53.0%
| | The Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3303 | Microsoft | high | 7.8 | 53.0%
| | The Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3301 | Microsoft | high | 7.8 | 53.6%
| | The Windows font library in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3296 | Microsoft | high | 7.5 | 23.6%
| | The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code via… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3293 | Microsoft | high | 7.5 | 17.8%
| | Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to execute arbitrary code v… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3290 | Microsoft | high | 7.5 | 14.0%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code via a crafted web p… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3289 | Microsoft | high | 7.5 | 17.8%
| | Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code via a craft… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-3288 | Microsoft | high | 7.5 | 34.1%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code via a crafted web p… | Aug 9, 2016 | May 6, 2026 |
| | CVE-2016-5331 | VMware | medium | 6.1 | 0.3%
| | CRLF injection vulnerability in VMware vCenter Server 6.0 before U2 and ESXi 6.0 allows remote attac… | Aug 8, 2016 | May 6, 2026 |
| | CVE-2016-5330 | VMware | high | 7.8 | 25.5%
| | Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 … | Aug 8, 2016 | May 6, 2026 |
| | CVE-2016-4374 | HPE | high | 7.7 | 0.2%
| | HPE Release Control (RC) 9.13, 9.20, and 9.21 before 9.21.0005 p4 allows remote authenticated users … | Aug 8, 2016 | May 6, 2026 |
| | CVE-2016-1474 | Cisco | medium | 4.3 | 0.2%
| | Cisco Prime Infrastructure 2.2(2) does not properly restrict use of IFRAME elements, which makes it … | Aug 8, 2016 | May 6, 2026 |
| | CVE-2016-1468 | Cisco | high | 8.8 | 1.5%
| | The administrative web interface in Cisco TelePresence Video Communication Server Expressway X8.5.2 … | Aug 8, 2016 | May 6, 2026 |
| | CVE-2016-1466 | Cisco | high | 7.5 | 0.7%
| | Cisco Unified Communications Manager IM and Presence Service 9.1(1) SU6, 9.1(1) SU6a, 9.1(1) SU7, 10… | Aug 8, 2016 | May 6, 2026 |
| | CVE-2016-0782 | Apache | medium | 5.4 | 1.2%
| | The administration web console in Apache ActiveMQ 5.x before 5.11.4, 5.12.x before 5.12.3, and 5.13.… | Aug 5, 2016 | May 6, 2026 |
| | CVE-2016-5000 | Apache | medium | 5.5 | 0.3%
| | The XLSX2CSV example in Apache POI before 3.14 allows remote attackers to read arbitrary files via a… | Aug 5, 2016 | May 6, 2026 |
| | CVE-2016-1513 | Apache | high | 7.8 | 1.1%
| | The Impress tool in Apache OpenOffice 4.1.2 and earlier allows remote attackers to cause a denial of… | Aug 5, 2016 | May 6, 2026 |
| | CVE-2016-1238 | Apache | high | 7.8 | 0.3%
| | (1) cpan/Archive-Tar/bin/ptar, (2) cpan/Archive-Tar/bin/ptardiff, (3) cpan/Archive-Tar/bin/ptargrep,… | Aug 2, 2016 | May 6, 2026 |
| | CVE-2016-4373 | HPE | critical | 9.8 | 1.8%
| | The AdminUI in HPE Operations Manager (OM) before 9.21.130 on Linux, Unix, and Solaris allows remote… | Aug 1, 2016 | May 6, 2026 |
| | CVE-2016-1461 | Cisco | high | 7.5 | 0.8%
| | Cisco AsyncOS on Email Security Appliance (ESA) devices through 9.7.0-125 allows remote attackers to… | Aug 1, 2016 | May 6, 2026 |