| | CVE-2015-3268 | Apache | medium | 6.1 | 5.3%
| | Cross-site scripting (XSS) vulnerability in the DisplayEntityField.getDescription method in ModelFor… | Apr 12, 2016 | May 6, 2026 |
| | CVE-2015-5349 | Apache | high | 7.8 | 1.4%
| | The CSV export in Apache LDAP Studio and Apache Directory Studio before 2.0.0-M10 does not properly … | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-0735 | Apache | high | 8.8 | 0.1%
| | Apache Ranger 0.5.x before 0.5.2 allows remote authenticated users to bypass intended parent resourc… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2015-0266 | Apache | high | 7.1 | 0.1%
| | The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass inte… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2015-0265 | Apache | medium | 6.1 | 2.0%
| | Cross-site scripting (XSS) vulnerability in the Policy Admin Tool in Apache Ranger before 0.5.0 allo… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-2171 | Apache | high | 7.5 | 16.6%
| | The User Manager service in Apache Jetspeed before 2.3.1 does not properly restrict access using Jet… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-2164 | Apache | high | 7.5 | 1.2%
| | The (1) FileService.importFileByInternalUserId and (2) FileService.importFile SOAP API methods in Ap… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-2163 | Apache | medium | 6.1 | 2.7%
| | Cross-site scripting (XSS) vulnerability in Apache OpenMeetings before 3.1.1 allows remote attackers… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-0784 | Apache | medium | 6.5 | 6.1%
| | Directory traversal vulnerability in the Import/Export System Backups functionality in Apache OpenMe… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-0783 | Apache | high | 7.5 | 0.9%
| | The sendHashByUser function in Apache OpenMeetings before 3.1.1 generates predictable password reset… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-0712 | Apache | medium | 6.1 | 2.6%
| | Cross-site scripting (XSS) vulnerability in Apache Jetspeed before 2.3.1 allows remote attackers to … | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-0711 | Apache | medium | 6.1 | 2.6%
| | Multiple cross-site scripting (XSS) vulnerabilities in Apache Jetspeed before 2.3.1 allow remote att… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-0710 | Apache | high | 8.8 | 79.2%
| | Multiple SQL injection vulnerabilities in the User Manager service in Apache Jetspeed before 2.3.1 a… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-0709 | Apache | high | 7.2 | 70.9%
| | Directory traversal vulnerability in the Import/Export function in the Portal Site Manager in Apache… | Apr 11, 2016 | May 6, 2026 |
| | CVE-2015-8240 | F5 | high | 7.5 | 1.2%
| | The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link … | Apr 11, 2016 | May 6, 2026 |
| | CVE-2016-3984 | Trellix | medium | 5.1 | 0.3%
| | The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) before 1.1.0.161, Agent … | Apr 8, 2016 | May 6, 2026 |
| | CVE-2016-3983 | Trellix | high | 7.5 | 0.2%
| | McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware… | Apr 8, 2016 | May 6, 2026 |
| | CVE-2016-1375 | Cisco | medium | 6.1 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco IP Interoperability and Collaboration System 4.10(… | Apr 8, 2016 | May 6, 2026 |
| | CVE-2016-0734 | Apache | medium | 6.1 | 3.0%
| | The web-based administration console in Apache ActiveMQ 5.x before 5.13.2 does not send an X-Frame-O… | Apr 7, 2016 | May 6, 2026 |
| | CVE-2016-1313 | Cisco | critical | 9.8 | 1.5%
| | Cisco UCS Invicta C3124SA Appliance 4.3.1 through 5.0.1, UCS Invicta Scaling System and Appliance, a… | Apr 6, 2016 | May 6, 2026 |
| | CVE-2016-1291 | Cisco | critical | 9.8 | 2.3%
| | Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM… | Apr 6, 2016 | May 6, 2026 |
| | CVE-2016-1290 | Cisco | high | 8.1 | 0.2%
| | The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Networ… | Apr 6, 2016 | May 6, 2026 |
| | CVE-2016-3969 | Trellix | medium | 6.1 | 0.3%
| | Cross-site scripting (XSS) vulnerability in McAfee Email Gateway (MEG) 7.6.x before 7.6.404, when Fi… | Apr 6, 2016 | May 6, 2026 |
| | CVE-2016-2000 | HPE | critical | 9.8 | 1.1%
| | HPE Asset Manager 9.40, 9.41, and 9.50 and Asset Manager CloudSystem Chargeback 9.40 allow remote at… | Apr 5, 2016 | May 6, 2026 |
| | CVE-2016-1345 | Cisco | high | 7.5 | 0.5%
| | Cisco FireSIGHT System Software 5.4.0 through 6.0.1 and ASA with FirePOWER Services 5.4.0 through 6.… | Apr 1, 2016 | May 6, 2026 |
| | CVE-2016-1762 | Trellix | high | 8.1 | 4.3%
| | The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of servic… | Mar 24, 2016 | May 6, 2026 |
| | CVE-2016-1998 | HPE | critical | 9.8 | 1.7%
| | HPE Service Manager (SM) 9.3x before 9.35 P4 and 9.4x before 9.41.P2 allows remote attackers to exec… | Mar 22, 2016 | May 6, 2026 |
| | CVE-2016-1997 | HPE | critical | 9.8 | 2.6%
| | HPE Operations Orchestration 10.x before 10.51 and Operations Orchestration content before 1.7.0 all… | Mar 22, 2016 | May 6, 2026 |
| | CVE-2016-2245 | HPE | critical | 9.8 | 14.5%
| | HP Support Assistant before 8.1.52.1 allows remote attackers to bypass authentication via unspecifie… | Mar 19, 2016 | May 6, 2026 |
| | CVE-2016-1996 | HPE | high | 7.7 | 0.1%
| | HPE System Management Homepage before 7.5.4 allows local users to obtain sensitive information or mo… | Mar 18, 2016 | May 6, 2026 |
| | CVE-2016-1995 | HPE | critical | 9.8 | 16.4%
| | HPE System Management Homepage before 7.5.4 allows remote attackers to execute arbitrary code via un… | Mar 18, 2016 | May 6, 2026 |
| | CVE-2016-1994 | HPE | medium | 6.5 | 0.3%
| | HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive in… | Mar 18, 2016 | May 6, 2026 |
| | CVE-2016-1993 | HPE | high | 8.1 | 0.3%
| | HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive in… | Mar 18, 2016 | May 6, 2026 |
| | CVE-2016-1992 | HPE | medium | 6.5 | 0.3%
| | HPE ArcSight ESM before 6.8c, and ArcSight ESM Express before 6.9.1, allows remote authenticated use… | Mar 17, 2016 | May 6, 2026 |
| | CVE-2016-2075 | VMware | medium | 5.4 | 0.1%
| | Cross-site scripting (XSS) vulnerability in VMware vRealize Business Advanced and Enterprise 8.x bef… | Mar 16, 2016 | May 6, 2026 |
| | CVE-2015-2344 | VMware | medium | 5.4 | 0.1%
| | Cross-site scripting (XSS) vulnerability in VMware vRealize Automation 6.x before 6.2.4 on Linux all… | Mar 16, 2016 | May 6, 2026 |
| | CVE-2016-1989 | HPE | critical | 9.8 | 13.5%
| | HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to exec… | Mar 15, 2016 | May 6, 2026 |
| | CVE-2016-1988 | HPE | critical | 9.8 | 13.5%
| | HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to exec… | Mar 15, 2016 | May 6, 2026 |
| | CVE-2016-1360 | Cisco | high | 7.1 | 0.1%
| | Cisco Prime LAN Management Solution (LMS) through 4.2.5 uses the same database decryption key across… | Mar 12, 2016 | May 6, 2026 |
| | CVE-2016-1338 | Cisco | medium | 6.5 | 0.6%
| | Cisco TelePresence Video Communication Server (VCS) X8.5.1 and X8.5.2 allows remote authenticated us… | Mar 12, 2016 | May 6, 2026 |
| | CVE-2015-6184 | Microsoft | high | 8.1 | 49.7%
| | The CAttrArray object implementation in Microsoft Internet Explorer 7 through 11 allows remote attac… | Mar 9, 2016 | May 6, 2026 |
| | CVE-2016-0134 | Microsoft | high | 7.8 | 48.5%
| | Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016,… | Mar 9, 2016 | May 6, 2026 |
| | CVE-2016-0132 | Microsoft | critical | 9.8 | 32.6%
| | Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 mishandles signature va… | Mar 9, 2016 | May 6, 2026 |
| | CVE-2016-0130 | Microsoft | high | 7.5 | 15.9%
| | Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor… | Mar 9, 2016 | May 6, 2026 |
| | CVE-2016-0129 | Microsoft | high | 7.5 | 15.9%
| | Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor… | Mar 9, 2016 | May 6, 2026 |
| | CVE-2016-0125 | Microsoft | low | 3.1 | 3.9%
| | Microsoft Edge mishandles the Referer policy, which allows remote attackers to obtain sensitive brow… | Mar 9, 2016 | May 6, 2026 |
| | CVE-2016-0124 | Microsoft | high | 7.5 | 15.9%
| | Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor… | Mar 9, 2016 | May 6, 2026 |
| | CVE-2016-0123 | Microsoft | high | 7.5 | 19.5%
| | Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor… | Mar 9, 2016 | May 6, 2026 |
| | CVE-2016-0116 | Microsoft | high | 7.5 | 16.0%
| | Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor… | Mar 9, 2016 | May 6, 2026 |
| | CVE-2016-0114 | Microsoft | high | 7.5 | 19.5%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Mar 9, 2016 | May 6, 2026 |