| | CVE-2015-2467 | Microsoft | critical | 9.3 | 69.2%
| | Microsoft Office 2007 SP3 allows remote attackers to execute arbitrary code via a crafted document, … | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2466 | Microsoft | critical | 9.3 | 39.1%
| | Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allows remote attackers to execute ar… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2464 | Microsoft | critical | 9.3 | 48.1%
| | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2463 | Microsoft | critical | 9.3 | 38.6%
| | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2462 | Microsoft | critical | 9.3 | 41.5%
| | ATMFD.DLL in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2460 | Microsoft | critical | 9.3 | 51.8%
| | ATMFD.DLL in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2456 | Microsoft | critical | 9.3 | 41.5%
| | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2455 | Microsoft | critical | 9.3 | 53.2%
| | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2440 | Microsoft | medium | 4.3 | 12.6%
| | Microsoft XML Core Services 3.0, 5.0, and 6.0 allows remote attackers to bypass the ASLR protection … | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2435 | Microsoft | critical | 9.3 | 30.2%
| | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2434 | Microsoft | medium | 4.3 | 25.8%
| | Microsoft XML Core Services 3.0 and 5.0 supports SSL 2.0, which makes it easier for remote attackers… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2431 | Microsoft | critical | 9.3 | 64.7%
| | Microsoft Office 2007 SP3 and 2010 SP2, Live Meeting 2007 Console, Lync 2010, Lync 2010 Attendee, Ly… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2423 | Microsoft | medium | 4.3 | 14.9%
| | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-2420 | Microsoft | medium | 4.3 | 12.6%
| | Cross-site scripting (XSS) vulnerability in Microsoft System Center 2012 Operations Manager Gold bef… | Aug 15, 2015 | May 6, 2026 |
| | CVE-2015-1642 | Microsoft | high | 7.8 | 72.9%
| ⚠ KEV | Microsoft Office 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary code … | Aug 15, 2015 | Apr 22, 2026 |
| | CVE-2014-3576 | Apache | high | 7.5 | 40.7%
| | The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2452 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause … | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2451 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause … | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2450 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause … | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2449 | Microsoft | medium | 4.3 | 16.6%
| | Microsoft Internet Explorer 7 through 11 and Edge allow remote attackers to bypass the ASLR protecti… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2448 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a de… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2447 | Microsoft | critical | 9.3 | 28.8%
| | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2446 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code or cause a … | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2445 | Microsoft | medium | 4.3 | 14.9%
| | Microsoft Internet Explorer 10 allows remote attackers to bypass the ASLR protection mechanism via a… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2444 | Microsoft | critical | 9.3 | 25.6%
| | Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause … | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2443 | Microsoft | critical | 9.3 | 16.3%
| | Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a d… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2442 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 8 through 11 and Edge allow remote attackers to execute arbitrary code o… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-2441 | Microsoft | critical | 9.3 | 22.8%
| | Microsoft Internet Explorer 7 through 11 and Edge allow remote attackers to execute arbitrary code o… | Aug 14, 2015 | May 6, 2026 |
| | CVE-2015-3253 | Apache | critical | 9.8 | 69.7%
| | The MethodClosure class in runtime/MethodClosure.java in Apache Groovy 1.7.0 through 2.4.3 allows re… | Aug 13, 2015 | May 6, 2026 |
| | CVE-2015-3187 | Apache | medium | 4.0 | 0.9%
| | The svn_repos_trace_node_locations function in Apache Subversion before 1.7.21 and 1.8.x before 1.8.… | Aug 12, 2015 | May 6, 2026 |
| | CVE-2015-3184 | Apache | medium | 5.0 | 17.0%
| | mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache ht… | Aug 12, 2015 | May 6, 2026 |
| | CVE-2015-4295 | Cisco | medium | 4.0 | 0.2%
| | The Prime Collaboration Deployment component in Cisco Unified Communications Manager 10.5(3.10000.9)… | Aug 1, 2015 | May 6, 2026 |
| | CVE-2015-4294 | Cisco | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco IM and Presence Service before 10.5 MR1 allows rem… | Aug 1, 2015 | May 6, 2026 |
| | CVE-2015-4292 | Cisco | medium | 4.3 | 0.4%
| | Cross-site scripting (XSS) vulnerability in the management interface in Cisco Prime Central for Host… | Aug 1, 2015 | May 6, 2026 |
| | CVE-2015-4289 | Cisco | medium | 6.4 | 0.5%
| | Directory traversal vulnerability in Cisco AnyConnect Secure Mobility Client 4.0(2049) allows remote… | Aug 1, 2015 | May 6, 2026 |
| | CVE-2015-4290 | Cisco | medium | 4.9 | 0.1%
| | The kernel extension in Cisco AnyConnect Secure Mobility Client 4.0(2049) on OS X allows local users… | Jul 29, 2015 | May 6, 2026 |
| | CVE-2015-4286 | Cisco | medium | 5.0 | 0.1%
| | The web framework in Cisco UCS Central Software 1.3(0.99) allows remote attackers to read arbitrary … | Jul 29, 2015 | May 6, 2026 |
| | CVE-2015-0732 | Cisco | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco AsyncOS on the Web Security Appliance (WSA) 9.0.0-… | Jul 29, 2015 | May 6, 2026 |
| | CVE-2015-4262 | Cisco | critical | 10.0 | 0.4%
| | The password-change feature in Cisco Unified MeetingPlace Web Conferencing before 8.5(5) MR3 and 8.6… | Jul 24, 2015 | May 6, 2026 |
| | CVE-2015-4281 | Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server 2.5 MR1 allows remote… | Jul 22, 2015 | May 6, 2026 |
| | CVE-2015-2134 | HPE | medium | 6.0 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 7.5.0 … | Jul 21, 2015 | May 6, 2026 |
| | CVE-2015-4283 | Cisco | high | 7.8 | 0.4%
| | Cisco Videoscape Policy Resource Manager (PRM) 3.5.4 allows remote attackers to cause a denial of se… | Jul 21, 2015 | May 6, 2026 |
| | CVE-2015-4279 | Cisco | high | 7.2 | 0.3%
| | The Manager component in Cisco Unified Computing System (UCS) 2.2(3b) on B Blade Server devices allo… | Jul 20, 2015 | May 6, 2026 |
| | CVE-2015-3185 | Apache | medium | 4.3 | 9.5%
| | The ap_some_auth_required function in server/request.c in the Apache HTTP Server 2.4.x before 2.4.14… | Jul 20, 2015 | May 6, 2026 |
| | CVE-2015-3183 | Apache | medium | 5.0 | 28.3%
| | The chunked transfer coding implementation in the Apache HTTP Server before 2.4.14 does not properly… | Jul 20, 2015 | May 6, 2026 |
| | CVE-2015-0253 | Apache | medium | 5.0 | 10.6%
| | The read_request_line function in server/protocol.c in the Apache HTTP Server 2.4.12 does not initia… | Jul 20, 2015 | May 6, 2026 |
| | CVE-2015-2418 | Microsoft | medium | 6.9 | 1.1%
| | Race condition in Microsoft Malicious Software Removal Tool (MSRT) before 5.26 allows local users to… | Jul 20, 2015 | May 6, 2026 |
| | CVE-2015-4280 | Cisco | medium | 5.0 | 0.3%
| | Cisco Prime Collaboration Assurance 10.0 allows remote attackers to cause a denial of service (HTTP … | Jul 18, 2015 | May 6, 2026 |
| | CVE-2015-0725 | Cisco | high | 7.8 | 0.2%
| | Cisco Videoscape Distribution Suite Service Broker (aka VDS-SB), when a VDSM configuration on UCS is… | Jul 16, 2015 | May 6, 2026 |
| | CVE-2015-4276 | Cisco | medium | 6.5 | 1.2%
| | Cisco WebEx Meetings Server 2.5MR1 allows remote authenticated users to execute arbitrary code via a… | Jul 16, 2015 | May 6, 2026 |