| | CVE-2012-0019 | Microsoft | critical | 9.3 | 45.1%
| | Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files… | Feb 14, 2012 | Apr 29, 2026 |
| | CVE-2012-0017 | Microsoft | medium | 4.3 | 42.4%
| | Cross-site scripting (XSS) vulnerability in inplview.aspx in Microsoft SharePoint Foundation 2010 Go… | Feb 14, 2012 | Apr 29, 2026 |
| | CVE-2012-0015 | Microsoft | critical | 9.3 | 56.3%
| | Microsoft .NET Framework 2.0 SP2 and 3.5.1 does not properly calculate the length of an unspecified … | Feb 14, 2012 | Apr 29, 2026 |
| | CVE-2012-0014 | Microsoft | high | 7.8 | 52.3%
| | Microsoft .NET Framework 2.0 SP2, 3.5.1, and 4, and Silverlight 4 before 4.1.10111, does not properl… | Feb 14, 2012 | Apr 29, 2026 |
| | CVE-2012-0012 | Microsoft | medium | 4.3 | 16.5%
| | Microsoft Internet Explorer 9 does not properly handle the creation and initialization of string obj… | Feb 14, 2012 | Apr 29, 2026 |
| | CVE-2012-0011 | Microsoft | critical | 9.3 | 42.3%
| | Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows rem… | Feb 14, 2012 | Apr 29, 2026 |
| | CVE-2012-0010 | Microsoft | medium | 4.3 | 15.2%
| | Microsoft Internet Explorer 6 through 9 does not properly perform copy-and-paste operations, which a… | Feb 14, 2012 | Apr 29, 2026 |
| | CVE-2012-0840 | Apache | medium | 5.0 | 37.2%
| | tables/apr_hash.c in the Apache Portable Runtime (APR) library through 1.4.5 computes hash values wi… | Feb 10, 2012 | Apr 29, 2026 |
| | CVE-2012-1007 | Apache | medium | 4.3 | 23.0%
| | Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 1.3.10 allow remote attackers t… | Feb 7, 2012 | Apr 29, 2026 |
| | CVE-2012-1006 | Apache | medium | 4.3 | 78.1%
| | Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 2.0.14 and 2.2.3 allow remote a… | Feb 7, 2012 | Apr 29, 2026 |
| | CVE-2011-4791 | HPE | critical | 10.0 | 16.8%
| | DBServer.exe in HP Data Protector Media Operations 6.11 and earlier allows remote attackers to execu… | Feb 3, 2012 | Apr 29, 2026 |
| | CVE-2011-4790 | HPE | critical | 9.3 | 4.0%
| | Unspecified vulnerability in HP Network Automation 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers… | Feb 2, 2012 | Apr 29, 2026 |
| | CVE-2012-0053 | Apache | medium | 4.3 | 56.0%
| | protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header informat… | Jan 28, 2012 | Apr 29, 2026 |
| | CVE-2012-0021 | Apache | low | 2.6 | 33.0%
| | The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server 2… | Jan 28, 2012 | Apr 29, 2026 |
| | CVE-2012-0903 | VMware | medium | 4.3 | 0.4%
| | Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Desktop 7.1.2 b10978 allow remote atta… | Jan 20, 2012 | Apr 29, 2026 |
| | CVE-2012-0329 | Cisco | critical | 9.0 | 1.2%
| | Cisco Digital Media Manager 5.2.2 and earlier, and 5.2.3, allows remote authenticated users to execu… | Jan 19, 2012 | Apr 29, 2026 |
| | CVE-2011-4659 | Cisco | critical | 10.0 | 0.9%
| | Cisco TelePresence Software before TE 4.1.1 on the Cisco IP Video Phone E20 has a default password f… | Jan 19, 2012 | Apr 29, 2026 |
| | CVE-2012-0022 | Apache | medium | 5.0 | 23.4%
| | Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient appr… | Jan 19, 2012 | Apr 29, 2026 |
| | CVE-2011-3375 | Apache | medium | 5.0 | 2.0%
| | Apache Tomcat 6.0.30 through 6.0.33 and 7.x before 7.0.22 does not properly perform certain caching … | Jan 19, 2012 | Apr 29, 2026 |
| | CVE-2012-0031 | Apache | medium | 4.6 | 1.2%
| | scoreboard.c in the Apache HTTP Server 2.2.21 and earlier might allow local users to cause a denial … | Jan 18, 2012 | Apr 29, 2026 |
| | CVE-2011-5064 | Apache | medium | 4.3 | 5.3%
| | DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.… | Jan 14, 2012 | Apr 29, 2026 |
| | CVE-2011-5063 | Apache | medium | 4.3 | 2.0%
| | The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x befor… | Jan 14, 2012 | Apr 29, 2026 |
| | CVE-2011-5062 | Apache | medium | 5.0 | 5.3%
| | The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x befor… | Jan 14, 2012 | Apr 29, 2026 |
| | CVE-2011-1184 | Apache | medium | 5.0 | 2.2%
| | The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x befor… | Jan 14, 2012 | Apr 29, 2026 |
| | CVE-2012-0697 | HPE | critical | 10.0 | 1.9%
| | HP StorageWorks P2000 G3 MSA array systems have a default account, which makes it easier for remote … | Jan 13, 2012 | Apr 29, 2026 |
| | CVE-2011-4789 | HPE | critical | 10.0 | 78.5%
| | Stack-based buffer overflow in magentservice.exe in the server in HP LoadRunner 11.00 before patch 4… | Jan 13, 2012 | Apr 29, 2026 |
| | CVE-2011-4787 | HPE | critical | 9.3 | 0.6%
| | A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows… | Jan 12, 2012 | Apr 29, 2026 |
| | CVE-2011-4786 | HPE | critical | 9.3 | 63.6%
| | A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows… | Jan 12, 2012 | Apr 29, 2026 |
| | CVE-2012-0007 | Microsoft | medium | 4.3 | 59.2%
| | The Microsoft Anti-Cross Site Scripting (AntiXSS) Library 3.x and 4.0 does not properly evaluate cha… | Jan 10, 2012 | Apr 29, 2026 |
| | CVE-2011-4785 | HPE | high | 7.8 | 1.7%
| | Directory traversal vulnerability in the HP-ChaiSOE/1.0 web server on the HP LaserJet P3015 printer … | Jan 10, 2012 | Apr 29, 2026 |
| | CVE-2011-5057 | Apache | medium | 5.0 | 52.9%
| | Apache Struts 2.3.1.2 and earlier, 2.3.19-2.3.23, provides interfaces that do not properly restrict … | Jan 8, 2012 | Apr 29, 2026 |
| | CVE-2012-0394 | Apache | medium | 6.8 | 92.6%
| | The DebuggingInterceptor component in Apache Struts before 2.3.1.1, when developer mode is used, all… | Jan 8, 2012 | Apr 29, 2026 |
| | CVE-2012-0393 | Apache | medium | 6.4 | 58.5%
| | The ParameterInterceptor component in Apache Struts before 2.3.1.1 does not prevent access to public… | Jan 8, 2012 | Apr 29, 2026 |
| | CVE-2012-0392 | Apache | medium | 6.8 | 75.0%
| | The CookieInterceptor component in Apache Struts before 2.3.1.1 does not use the parameter-name whit… | Jan 8, 2012 | Apr 29, 2026 |
| | CVE-2012-0391 | Apache | critical | 9.8 | 88.3%
| ⚠ KEV | The ExceptionDelegator component in Apache Struts before 2.2.3.1 interprets parameter values as OGNL… | Jan 8, 2012 | Apr 22, 2026 |
| | CVE-2012-0287 | Microsoft | low | 2.6 | 0.6%
| | Cross-site scripting (XSS) vulnerability in wp-comments-post.php in WordPress 3.3.x before 3.3.1, wh… | Jan 6, 2012 | Apr 29, 2026 |
| | CVE-2011-4858 | Apache | medium | 5.0 | 76.6%
| | Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form … | Jan 5, 2012 | Apr 29, 2026 |
| | CVE-2011-4905 | Apache | medium | 5.0 | 12.5%
| | Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service (file-descriptor e… | Jan 5, 2012 | Apr 29, 2026 |
| | CVE-2011-4778 | Splunk | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk 4.2.x before 4.2.5 allows remote at… | Jan 3, 2012 | Apr 29, 2026 |
| | CVE-2011-4644 | Splunk | critical | 9.3 | 5.0%
| | Splunk 4.2.5 and earlier, when a Free license is selected, enables potentially undesirable functiona… | Jan 3, 2012 | Apr 29, 2026 |
| | CVE-2011-4643 | Splunk | medium | 4.0 | 9.3%
| | Multiple directory traversal vulnerabilities in Splunk 4.x before 4.2.5 allow remote authenticated u… | Jan 3, 2012 | Apr 29, 2026 |
| | CVE-2011-4642 | Splunk | medium | 4.6 | 18.7%
| | mappy.py in Splunk Web in Splunk 4.2.x before 4.2.5 does not properly restrict use of the mappy comm… | Jan 3, 2012 | Apr 29, 2026 |
| | CVE-2011-5034 | Apache | high | 7.8 | 73.3%
| | Apache Geronimo 2.2.1 and earlier computes hash values for form parameters without restricting the a… | Dec 30, 2011 | Apr 29, 2026 |
| | CVE-2011-4165 | HPE | critical | 10.0 | 21.1%
| | Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute … | Dec 29, 2011 | Apr 29, 2026 |
| | CVE-2011-4164 | HPE | critical | 10.0 | 21.1%
| | Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute … | Dec 29, 2011 | Apr 29, 2026 |
| | CVE-2011-4163 | HPE | critical | 10.0 | 21.1%
| | Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute … | Dec 29, 2011 | Apr 29, 2026 |
| | CVE-2007-6750 | Apache | medium | 5.0 | 81.7%
| | The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service (daemon outa… | Dec 27, 2011 | Apr 29, 2026 |
| | CVE-2011-4169 | HPE | high | 7.5 | 1.1%
| | Unspecified vulnerability in HP Managed Printing Administration before 2.6.4 allows remote attackers… | Dec 27, 2011 | Apr 29, 2026 |
| | CVE-2011-4168 | HPE | high | 7.5 | 1.6%
| | Directory traversal vulnerability in hpmpa/jobDelivery/Default.asp in HP Managed Printing Administra… | Dec 27, 2011 | Apr 29, 2026 |
| | CVE-2011-4167 | HPE | high | 7.5 | 11.1%
| | Stack-based buffer overflow in MPAUploader.dll in HP Managed Printing Administration before 2.6.4 al… | Dec 27, 2011 | Apr 29, 2026 |