| | CVE-2008-4916 | VMware | medium | 4.6 | 0.0%
| | Unspecified vulnerability in a guest virtual device driver in VMware Workstation before 5.5.9 build … | Apr 6, 2009 | Apr 23, 2026 |
| | CVE-2009-0556 | Microsoft | high | 8.8 | 76.4%
| ⚠ KEV | Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3, and PowerPoint in Microsoft Office 200… | Apr 3, 2009 | Apr 22, 2026 |
| | CVE-2009-1227 | Check Point | critical | 10.0 | 17.0%
| | NOTE: this issue has been disputed by the vendor. Buffer overflow in the PKI Web Service in Check P… | Apr 2, 2009 | Apr 23, 2026 |
| | CVE-2009-1217 | Microsoft | medium | 4.3 | 56.4%
| | Off-by-one error in the GpFont::SetData function in gdiplus.dll in Microsoft GDI+ on Windows XP allo… | Apr 1, 2009 | Apr 23, 2026 |
| | CVE-2009-1216 | Microsoft | critical | 10.0 | 42.6%
| | Multiple unspecified vulnerabilities in (1) unlzh.c and (2) unpack.c in the gzip libraries in Micros… | Apr 1, 2009 | Apr 23, 2026 |
| | CVE-2009-1072 | VMware | medium | 4.9 | 0.6%
| | nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD capability before handling a us… | Mar 25, 2009 | Apr 23, 2026 |
| | CVE-2009-0921 | HPE | critical | 10.0 | 36.0%
| | Multiple heap-based buffer overflows in OvCgi/Toolbar.exe in HP OpenView Network Node Manager (OV NN… | Mar 25, 2009 | Apr 23, 2026 |
| | CVE-2009-0920 | HPE | high | 7.5 | 58.8%
| | Stack-based buffer overflow in OvCgi/Toolbar.exe in HP OpenView Network Node Manager (OV NNM) 7.01, … | Mar 25, 2009 | Apr 23, 2026 |
| | CVE-2009-1043 | Microsoft | critical | 10.0 | 39.7%
| | Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to e… | Mar 23, 2009 | Apr 23, 2026 |
| | CVE-2008-6505 | Apache | medium | 5.0 | 82.9%
| | Multiple directory traversal vulnerabilities in Apache Struts 2.0.x before 2.0.12 and 2.1.x before 2… | Mar 23, 2009 | Apr 23, 2026 |
| | CVE-2008-6504 | Apache | medium | 5.0 | 65.1%
| | ParametersInterceptor in OpenSymphony XWork 2.0.x before 2.0.6 and 2.1.x before 2.1.2, as used in Ap… | Mar 23, 2009 | Apr 23, 2026 |
| | CVE-2009-0778 | VMware | high | 7.1 | 1.5%
| | The icmp_send function in net/ipv4/icmp.c in the Linux kernel before 2.6.25, when configured as a ro… | Mar 12, 2009 | Apr 23, 2026 |
| | CVE-2009-0632 | Cisco | critical | 9.0 | 1.3%
| | The IP Phone Personal Address Book (PAB) Synchronizer feature in Cisco Unified Communications Manage… | Mar 12, 2009 | Apr 23, 2026 |
| | CVE-2009-0713 | HPE | medium | 5.0 | 0.9%
| | Unspecified vulnerability in WMI Mapper for HP Systems Insight Manager before 2.5.2.0 allows remote … | Mar 11, 2009 | Apr 23, 2026 |
| | CVE-2009-0712 | HPE | high | 7.2 | 0.1%
| | Unspecified vulnerability in WMI Mapper for HP Systems Insight Manager before 2.5.2.0 allows local u… | Mar 11, 2009 | Apr 23, 2026 |
| | CVE-2009-0781 | Apache | medium | 4.3 | 37.3%
| | Cross-site scripting (XSS) vulnerability in jsp/cal/cal2.jsp in the calendar application in the exam… | Mar 9, 2009 | Apr 23, 2026 |
| | CVE-2009-0537 | Microsoft | medium | 4.9 | 7.1%
| | Integer overflow in the fts_build function in fts.c in libc in (1) OpenBSD 4.4 and earlier and (2) M… | Mar 9, 2009 | Apr 23, 2026 |
| | CVE-2009-0619 | Cisco | high | 7.8 | 0.4%
| | Unspecified vulnerability in the Session Border Controller (SBC) before 3.0(2) for Cisco 7600 series… | Mar 5, 2009 | Apr 23, 2026 |
| | CVE-2009-0754 | Apache | low | 2.1 | 0.2%
| | PHP 4.4.4, 5.1.6, and other versions, when running on Apache, allows local users to modify behavior … | Mar 3, 2009 | Apr 23, 2026 |
| | CVE-2009-0743 | Cisco | low | 3.5 | 0.2%
| | Cross-site scripting (XSS) vulnerability in the edit account page in the Web Server in Cisco Unified… | Feb 27, 2009 | Apr 23, 2026 |
| | CVE-2009-0208 | HPE | critical | 10.0 | 4.2%
| | Unspecified vulnerability in HP Virtual Rooms Client before 7.0.1, when running on Windows, allows r… | Feb 26, 2009 | Apr 23, 2026 |
| | CVE-2008-4308 | Apache | low | 2.6 | 7.6%
| | The doRead method in Apache Tomcat 4.1.32 through 4.1.34 and 5.5.10 through 5.5.20 does not return a… | Feb 26, 2009 | Apr 23, 2026 |
| | CVE-2009-0620 | Cisco | critical | 10.0 | 0.5%
| | Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.… | Feb 26, 2009 | Apr 23, 2026 |
| | CVE-2009-0618 | Cisco | high | 8.5 | 0.6%
| | Unspecified vulnerability in the Java agent in Cisco Application Networking Manager (ANM) before 2.0… | Feb 26, 2009 | Apr 23, 2026 |
| | CVE-2009-0617 | Cisco | critical | 10.0 | 0.8%
| | Cisco Application Networking Manager (ANM) before 2.0 uses a default MySQL root password, which make… | Feb 26, 2009 | Apr 23, 2026 |
| | CVE-2009-0616 | Cisco | critical | 10.0 | 0.5%
| | Cisco Application Networking Manager (ANM) before 2.0 uses default usernames and passwords, which ma… | Feb 26, 2009 | Apr 23, 2026 |
| | CVE-2009-0615 | Cisco | critical | 9.0 | 0.2%
| | Directory traversal vulnerability in Cisco Application Networking Manager (ANM) before 2.0 and Appli… | Feb 26, 2009 | Apr 23, 2026 |
| | CVE-2009-0614 | Cisco | critical | 9.0 | 0.5%
| | Unspecified vulnerability in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 befor… | Feb 26, 2009 | Apr 23, 2026 |
| | CVE-2009-0238 | Microsoft | high | 8.8 | 81.1%
| ⚠ KEV | Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel Viewer 2003 Gold and SP3; E… | Feb 25, 2009 | Apr 22, 2026 |
| | CVE-2007-5289 | HPE | high | 7.6 | 25.5%
| | HP Mercury Quality Center (QC) 9.2 and earlier, and possibly TestDirector, relies on cached client-s… | Feb 24, 2009 | Apr 23, 2026 |
| | CVE-2009-0647 | Microsoft | medium | 5.0 | 18.6%
| | msnmsgr.exe in Windows Live Messenger (WLM) 2009 build 14.0.8064.206, and other 14.0.8064.x builds, … | Feb 19, 2009 | Apr 23, 2026 |
| | CVE-2009-0305 | Microsoft | critical | 9.3 | 45.2%
| | Multiple stack-based buffer overflows in the Research in Motion RIM AxLoader ActiveX control in AxLo… | Feb 10, 2009 | Apr 23, 2026 |
| | CVE-2009-0099 | Microsoft | medium | 5.0 | 71.1%
| | The Electronic Messaging System Microsoft Data Base (EMSMDB32) provider in Microsoft Exchange 2000 S… | Feb 10, 2009 | Apr 23, 2026 |
| | CVE-2009-0098 | Microsoft | critical | 9.3 | 62.5%
| | Microsoft Exchange 2000 Server SP3, Exchange Server 2003 SP2, and Exchange Server 2007 SP1 do not pr… | Feb 10, 2009 | Apr 23, 2026 |
| | CVE-2009-0097 | Microsoft | critical | 9.3 | 57.4%
| | Microsoft Office Visio 2002 SP2 and 2003 SP3 does not properly validate memory allocation for Visio … | Feb 10, 2009 | Apr 23, 2026 |
| | CVE-2009-0096 | Microsoft | critical | 9.3 | 63.3%
| | Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly perform memory copy operat… | Feb 10, 2009 | Apr 23, 2026 |
| | CVE-2009-0095 | Microsoft | critical | 9.3 | 48.8%
| | Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly validate object data in Vi… | Feb 10, 2009 | Apr 23, 2026 |
| | CVE-2009-0076 | Microsoft | critical | 9.3 | 58.5%
| | Microsoft Internet Explorer 7, when XHTML strict mode is used, allows remote attackers to execute ar… | Feb 10, 2009 | Apr 23, 2026 |
| | CVE-2009-0075 | Microsoft | critical | 9.3 | 86.9%
| | Microsoft Internet Explorer 7 does not properly handle errors during attempted access to deleted obj… | Feb 10, 2009 | Apr 23, 2026 |
| | CVE-2009-0206 | HPE | medium | 4.9 | 0.1%
| | Unspecified vulnerability in NFS in HP ONCplus B.11.31.05 and earlier for HP-UX B.11.31 allows local… | Feb 8, 2009 | Apr 23, 2026 |
| | CVE-2008-4562 | HPE | critical | 10.0 | 5.6%
| | Buffer overflow in the ovlaunch CGI program in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51,… | Feb 8, 2009 | Apr 23, 2026 |
| | CVE-2008-4560 | HPE | high | 7.8 | 0.4%
| | HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to obtain sen… | Feb 8, 2009 | Apr 23, 2026 |
| | CVE-2008-4559 | HPE | critical | 10.0 | 3.5%
| | HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute ar… | Feb 8, 2009 | Apr 23, 2026 |
| | CVE-2008-6063 | Microsoft | medium | 4.3 | 17.4%
| | Microsoft Word 2007, when the "Save as PDF" add-on is enabled, places an absolute pathname in the Su… | Feb 5, 2009 | Apr 23, 2026 |
| | CVE-2009-0419 | Microsoft | medium | 5.0 | 29.8%
| | Microsoft XML Core Services, as used in Microsoft Expression Web, Office, Internet Explorer 6 and 7,… | Feb 4, 2009 | Apr 23, 2026 |
| | CVE-2008-4914 | VMware | medium | 4.7 | 0.0%
| | Unspecified vulnerability in VMware ESXi 3.5 before ESXe350-200901401-I-SG and ESX 3.5 before ESX350… | Feb 3, 2009 | Apr 23, 2026 |
| | CVE-2009-0369 | Microsoft | medium | 4.3 | 20.7%
| | Microsoft Internet Explorer 7 allows remote attackers to trick a user into visiting an arbitrary URL… | Jan 30, 2009 | Apr 23, 2026 |
| | CVE-2009-0204 | HPE | medium | 4.3 | 0.8%
| | Cross-site scripting (XSS) vulnerability in HP Select Access 6.1 and 6.2 allows remote attackers to … | Jan 30, 2009 | Apr 23, 2026 |
| | CVE-2009-0341 | Microsoft | critical | 9.3 | 48.3%
| | The shell32 module in Microsoft Internet Explorer 7.0 on Windows XP SP3 might allow remote attackers… | Jan 29, 2009 | Apr 23, 2026 |
| | CVE-2008-3358 | Microsoft | medium | 4.3 | 0.7%
| | Cross-site scripting (XSS) vulnerability in Web Dynpro (WD) in the SAP NetWeaver portal, when Intern… | Jan 28, 2009 | Apr 23, 2026 |