| | CVE-2016-3206 | Microsoft | high | 7.5 | 14.9%
| | The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 t… | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-3205 | Microsoft | high | 7.5 | 14.9%
| | The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 t… | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-3203 | Microsoft | high | 7.8 | 49.2%
| | Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 Gold and 1511, and Microsoft Edge… | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-3202 | Microsoft | high | 7.5 | 14.9%
| | The Microsoft (1) Chakra JavaScript, (2) JScript, and (3) VBScript engines, as used in Microsoft Int… | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-3201 | Microsoft | medium | 6.5 | 30.6%
| | Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 Gold and 1511, and Microsoft Edge… | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-3199 | Microsoft | high | 8.8 | 19.2%
| | The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or … | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-3198 | Microsoft | medium | 6.5 | 34.9%
| | Microsoft Edge allows remote attackers to bypass the Content Security Policy (CSP) protection mechan… | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-0200 | Microsoft | high | 8.8 | 14.0%
| | Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause … | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-0199 | Microsoft | high | 8.8 | 70.1%
| | Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause … | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-0028 | Microsoft | medium | 5.5 | 21.1%
| | Outlook Web Access (OWA) in Microsoft Exchange Server 2013 SP1, Cumulative Update 11, and Cumulative… | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-0025 | Microsoft | high | 7.3 | 26.9%
| | Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office 201… | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-2174 | Apache | high | 7.2 | 0.6%
| | SQL injection vulnerability in the policy admin tool in Apache Ranger before 0.5.3 allows remote aut… | Jun 13, 2016 | May 6, 2026 |
| | CVE-2016-3085 | Apache | medium | 6.5 | 0.3%
| | Apache CloudStack 4.5.x before 4.5.2.1, 4.6.x before 4.6.2.1, 4.7.x before 4.7.1.1, and 4.8.x before… | Jun 10, 2016 | May 6, 2026 |
| | CVE-2016-4448 | Tenable | critical | 9.8 | 1.2%
| | Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via … | Jun 9, 2016 | May 6, 2026 |
| | CVE-2016-4447 | Trellix | high | 7.5 | 2.1%
| | The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attack… | Jun 9, 2016 | May 6, 2026 |
| | CVE-2016-4369 | HPE | high | 8.8 | 0.5%
| | HPE Discovery and Dependency Mapping Inventory (DDMi) 9.30, 9.31, 9.32, 9.32 update 1, 9.32 update 2… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4368 | HPE | critical | 9.8 | 1.2%
| | HPE Universal CMDB 10.0 through 10.21, Universal CMDB Configuration Manager 10.0 through 10.21, and … | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4367 | HPE | high | 7.5 | 1.5%
| | The Universal Discovery component in HPE Universal CMDB 10.0, 10.01, 10.10, 10.11, 10.20, and 10.21 … | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4366 | HPE | critical | 9.8 | 2.4%
| | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote attackers to obtain sensitive informati… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4365 | HPE | high | 7.5 | 1.7%
| | HPE Insight Control server deployment allows remote attackers to obtain sensitive information via un… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4364 | HPE | high | 8.4 | 0.0%
| | HPE Insight Control server deployment allows local users to gain privileges via unspecified vectors. | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4363 | HPE | medium | 6.1 | 1.0%
| | HPE Insight Control server deployment allows remote attackers to modify data via unspecified vectors… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4362 | HPE | high | 8.1 | 0.3%
| | HPE Insight Control server deployment allows remote authenticated users to obtain sensitive informat… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4361 | HPE | high | 7.5 | 3.0%
| | HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1, 12.01 through patch 3, 12.02 through pa… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4360 | HPE | critical | 9.1 | 3.7%
| | web/admin/data.js in the Performance Center Virtual Table Server (VTS) component in HPE LoadRunner 1… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4359 | HPE | critical | 9.8 | 27.9%
| | Stack-based buffer overflow in mchan.dll in the agent in HPE LoadRunner 11.52 through patch 3, 12.00… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4358 | HPE | high | 8.1 | 1.0%
| | HPE Matrix Operating Environment before 7.5.1 allows remote attackers to obtain sensitive informatio… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4357 | HPE | high | 8.1 | 0.2%
| | HPE Matrix Operating Environment before 7.5.1 allows remote authenticated users to obtain sensitive … | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2078 | VMware | medium | 6.1 | 0.2%
| | Cross-site scripting (XSS) vulnerability in the Web Client in VMware vCenter Server 5.1 before updat… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2030 | HPE | high | 8.1 | 0.2%
| | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2029 | HPE | critical | 9.1 | 1.3%
| | HPE Matrix Operating Environment before 7.5.1 allows remote attackers to obtain sensitive informatio… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2028 | HPE | high | 8.1 | 0.2%
| | HPE Matrix Operating Environment before 7.5.1 allows remote authenticated users to obtain sensitive … | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2027 | HPE | high | 7.5 | 1.7%
| | HPE Matrix Operating Environment before 7.5.1 allows remote attackers to obtain sensitive informatio… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2026 | HPE | high | 7.5 | 1.7%
| | HPE Matrix Operating Environment before 7.5.1 allows remote attackers to obtain sensitive informatio… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2024 | HPE | critical | 9.8 | 1.5%
| | HPE Insight Control before 7.5.1 allow remote attackers to obtain sensitive information, modify data… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2022 | HPE | high | 8.1 | 0.2%
| | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2021 | HPE | high | 8.1 | 0.3%
| | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2020 | HPE | high | 8.1 | 0.2%
| | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2019 | HPE | high | 8.1 | 0.3%
| | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2018 | HPE | critical | 9.1 | 1.5%
| | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote attackers to obtain sensitive informati… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-2017 | HPE | high | 8.1 | 0.7%
| | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-1418 | Cisco | high | 7.8 | 0.1%
| | Cisco Aironet Access Point Software 8.2(100.0) on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access … | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-1405 | Cisco | high | 7.5 | 1.8%
| | libclamav in ClamAV (aka Clam AntiVirus), as used in Advanced Malware Protection (AMP) on Cisco Emai… | Jun 8, 2016 | May 6, 2026 |
| | CVE-2016-4545 | F5 | high | 7.5 | 1.2%
| | Virtual servers in F5 BIG-IP 11.5.4, when SSL profiles are enabled, allow remote attackers to cause … | Jun 7, 2016 | May 6, 2026 |
| | CVE-2016-3093 | Apache | medium | 5.3 | 5.1%
| | Apache Struts 2.0.0 through 2.3.24.1 does not properly cache method references when used with OGNL b… | Jun 7, 2016 | May 6, 2026 |
| | CVE-2016-3087 | Apache | critical | 9.8 | 87.0%
| | Apache Struts 2.3.19 to 2.3.20.2, 2.3.21 to 2.3.24.1, and 2.3.25 to 2.3.28, when Dynamic Method Invo… | Jun 7, 2016 | May 6, 2026 |
| | CVE-2016-4450 | F5 | high | 7.5 | 3.5%
| | os/unix/ngx_files.c in nginx before 1.10.1 and 1.11.x before 1.11.1 allows remote attackers to cause… | Jun 7, 2016 | May 6, 2026 |
| | CVE-2016-4437 | Apache | critical | 9.8 | 94.2%
| ⚠ KEV | Apache Shiro before 1.2.5, when a cipher key has not been configured for the "remember me" feature, … | Jun 7, 2016 | Apr 22, 2026 |
| | CVE-2015-7611 | Apache | high | 8.1 | 74.9%
| | Apache James Server 2.3.2, when configured with file-based user repositories, allows attackers to ex… | Jun 7, 2016 | May 6, 2026 |
| | CVE-2016-1391 | Cisco | high | 8.8 | 0.6%
| | Cisco Prime Network Analysis Module (NAM) before 6.1(1) patch.6.1-2-final and 6.2.x before 6.2(2) an… | Jun 4, 2016 | May 6, 2026 |