| | CVE-2016-1390 | Cisco | high | 7.8 | 0.1%
| | Cisco Prime Network Analysis Module (NAM) before 6.1(1) patch.6.1-2-final and 6.2.x before 6.2(1) an… | Jun 4, 2016 | May 6, 2026 |
| | CVE-2016-1388 | Cisco | critical | 9.8 | 0.4%
| | Cisco Prime Network Analysis Module (NAM) before 6.1(1) patch.6.1-2-final and 6.2.x before 6.2(1) an… | Jun 3, 2016 | May 6, 2026 |
| | CVE-2016-4432 | Apache | critical | 9.1 | 0.4%
| | The AMQP 0-8, 0-9, 0-91, and 0-10 connection handling in Apache Qpid Java before 6.0.3 might allow r… | Jun 1, 2016 | May 6, 2026 |
| | CVE-2016-3094 | Apache | medium | 5.9 | 1.0%
| | PlainSaslServer.java in Apache Qpid Java before 6.0.3, when the broker is configured to allow plaint… | Jun 1, 2016 | May 6, 2026 |
| | CVE-2016-3088 | Apache | critical | 9.8 | 94.2%
| ⚠ KEV | The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to uploa… | Jun 1, 2016 | Apr 21, 2026 |
| | CVE-2016-2175 | Apache | high | 7.8 | 5.9%
| | Apache PDFBox before 1.8.12 and 2.x before 2.0.1 does not properly initialize the XML parsers, which… | Jun 1, 2016 | May 6, 2026 |
| | CVE-2016-2025 | HPE | high | 7.5 | 0.7%
| | HPE Service Manager 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, and 9.41 allows remote attackers to ob… | May 30, 2016 | May 6, 2026 |
| | CVE-2016-2023 | HPE | medium | 5.5 | 0.1%
| | HPE RESTful Interface Tool 1.40 allows local users to obtain sensitive information via unspecified v… | May 30, 2016 | May 6, 2026 |
| | CVE-2016-1999 | HPE | critical | 9.8 | 3.2%
| | The server in HP Release Control 9.13, 9.20, and 9.21 allows remote attackers to execute arbitrary c… | May 30, 2016 | May 6, 2026 |
| | CVE-2016-1404 | Cisco | high | 7.5 | 0.2%
| | Cisco UCS Invicta 4.3, 4.5, and 5.0.1 on Invicta appliances and Invicta Scaling System uses the same… | May 29, 2016 | May 6, 2026 |
| | CVE-2016-1413 | Cisco | medium | 6.5 | 0.3%
| | The web interface in Cisco Firepower Management Center 5.4.0 through 6.0.0.1 allows remote authentic… | May 28, 2016 | May 6, 2026 |
| | CVE-2016-1410 | Cisco | high | 7.5 | 0.3%
| | Cisco WebEx Meeting Center Original Release Base allows remote attackers to obtain sensitive informa… | May 28, 2016 | May 6, 2026 |
| | CVE-2016-0718 | Trellix | critical | 9.8 | 2.8%
| | Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute ar… | May 26, 2016 | May 6, 2026 |
| | CVE-2016-1406 | Cisco | high | 8.8 | 0.3%
| | The API web interface in Cisco Prime Infrastructure before 3.1 and Cisco Evolved Programmable Networ… | May 25, 2016 | May 6, 2026 |
| | CVE-2016-1400 | Cisco | high | 7.5 | 0.7%
| | Cisco TelePresence Video Communications Server (VCS) X8.x before X8.7.2 allows remote attackers to c… | May 25, 2016 | May 6, 2026 |
| | CVE-2016-1383 | Cisco | high | 7.5 | 1.1%
| | Memory leak in Cisco AsyncOS through 8.8 on Web Security Appliance (WSA) devices allows remote attac… | May 25, 2016 | May 6, 2026 |
| | CVE-2016-1382 | Cisco | high | 7.5 | 0.5%
| | Cisco AsyncOS before 8.5.3-069 and 8.6 through 8.8 on Web Security Appliance (WSA) devices mishandle… | May 25, 2016 | May 6, 2026 |
| | CVE-2016-1381 | Cisco | high | 7.5 | 1.1%
| | Memory leak in Cisco AsyncOS 8.5 through 9.0 before 9.0.1-162 on Web Security Appliance (WSA) device… | May 25, 2016 | May 6, 2026 |
| | CVE-2016-1380 | Cisco | high | 7.5 | 0.6%
| | Cisco AsyncOS 8.0 before 8.0.6-119 on Web Security Appliance (WSA) devices allows remote attackers t… | May 25, 2016 | May 6, 2026 |
| | CVE-2016-4543 | HPE | critical | 9.8 | 5.4%
| | The exif_process_IFD_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, … | May 22, 2016 | May 6, 2026 |
| | CVE-2016-1402 | Cisco | high | 7.5 | 1.1%
| | The Active Directory (AD) integration component in Cisco Identity Service Engine (ISE) before 1.2.0.… | May 21, 2016 | May 6, 2026 |
| | CVE-2016-1401 | Cisco | medium | 6.1 | 0.3%
| | Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified Computing Syst… | May 21, 2016 | May 6, 2026 |
| | CVE-2016-1840 | Trellix | high | 7.8 | 2.1%
| | Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used i… | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1839 | Trellix | medium | 5.5 | 10.8%
| | The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X befor… | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1838 | Trellix | medium | 5.5 | 10.7%
| | The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before … | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1837 | Trellix | medium | 5.5 | 0.8%
| | Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiter… | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1836 | Trellix | medium | 5.5 | 1.2%
| | Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used … | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1834 | Trellix | high | 7.8 | 2.4%
| | Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS … | May 20, 2016 | May 6, 2026 |
| | CVE-2016-1833 | Trellix | medium | 5.5 | 1.2%
| | The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before… | May 20, 2016 | May 6, 2026 |
| | CVE-2016-2077 | VMware | critical | 9.8 | 0.6%
| | VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly acce… | May 18, 2016 | May 6, 2026 |
| | CVE-2016-0731 | Apache | medium | 4.9 | 0.2%
| | The File Browser View in Apache Ambari before 2.2.1 allows remote authenticated administrators to re… | May 18, 2016 | May 6, 2026 |
| | CVE-2016-0707 | Apache | low | 3.3 | 0.1%
| | The agent in Apache Ambari before 2.1.2 uses weak permissions for the (1) /var/lib/ambari-agent/data… | May 18, 2016 | May 6, 2026 |
| | CVE-2016-3705 | HPE | high | 7.5 | 1.0%
| | The (1) xmlParserEntityCheck and (2) xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 … | May 17, 2016 | May 6, 2026 |
| | CVE-2016-3627 | HPE | high | 7.5 | 0.2%
| | The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode… | May 17, 2016 | May 6, 2026 |
| | CVE-2016-2016 | HPE | medium | 5.5 | 0.1%
| | Base-VxFS-50 B.05.00.01 through B.05.00.02, Base-VxFS-501 B.05.01.0 through B.05.01.03, and Base-VxF… | May 14, 2016 | May 6, 2026 |
| | CVE-2016-2015 | HPE | high | 7.1 | 0.1%
| | HPE System Management Homepage before 7.5.5 allows local users to obtain sensitive information or mo… | May 14, 2016 | May 6, 2026 |
| | CVE-2016-1399 | Cisco | high | 7.5 | 1.1%
| | The packet-processing microcode in Cisco IOS 15.2(2)EA, 15.2(2)EA1, 15.2(2)EA2, and 15.2(4)EA on Ind… | May 14, 2016 | May 6, 2026 |
| | CVE-2015-8099 | F5 | medium | 5.9 | 1.0%
| | F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 11.4.1 HF10,… | May 13, 2016 | May 6, 2026 |
| | CVE-2016-2099 | Apache | critical | 9.8 | 2.2%
| | Use-after-free vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 3.1.3 and earlier… | May 13, 2016 | May 6, 2026 |
| | CVE-2016-1393 | Cisco | high | 7.1 | 0.1%
| | SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 allows … | May 12, 2016 | May 6, 2026 |
| | CVE-2016-3710 | HPE | high | 8.8 | 0.1%
| | The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which a… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4116 | Microsoft | high | 7.5 | 6.1%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4115 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4114 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4113 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4112 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4111 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4110 | Microsoft | high | 7.5 | 7.0%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4109 | Microsoft | high | 7.5 | 6.5%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |
| | CVE-2016-4108 | Microsoft | high | 7.5 | 65.6%
| | Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash l… | May 11, 2016 | May 6, 2026 |