| | CVE-2017-8696 |  Microsoft | high | 7.5 | 21.5%
| | Windows Uniscribe in Microsoft Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Office 2007 SP3; O… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8695 | Microsoft | medium | 5.3 | 25.7%
| | Windows Uniscribe in Microsoft Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windo… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8682 | Microsoft | high | 8.8 | 66.0%
| | Windows graphics on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Window… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8676 | Microsoft | low | 3.3 | 7.6%
| | The Windows Graphics Device Interface (GDI) in Microsoft Windows Server 2008 SP2 and R2 SP1; Windows… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8660 | Microsoft | high | 8.8 | 16.2%
| | Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker … | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8649 | Microsoft | high | 7.5 | 17.6%
| | Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to exe… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8648 | Microsoft | medium | 4.3 | 12.8%
| | Microsoft Edge in Microsoft Windows Version 1703 allows an attacker to obtain information to further… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8643 | Microsoft | medium | 4.3 | 11.4%
| | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an att… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8632 | Microsoft | high | 7.8 | 19.0%
| | A remote code execution vulnerability exists in Microsoft Excel 2010 Service Pack 2, Microsoft Excel… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8631 | Microsoft | high | 7.8 | 21.4%
| | A remote code execution vulnerability exists in Excel Services, Microsoft Excel 2007 Service Pack 3,… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8630 | Microsoft | high | 7.8 | 22.8%
| | Microsoft Office 2016 allows a remote code execution vulnerability when it fails to properly handle … | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8629 | Microsoft | medium | 5.4 | 0.9%
| | Microsoft SharePoint Server 2013 Service Pack 1 allows an elevation of privilege vulnerability when … | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8597 | Microsoft | medium | 4.3 | 12.8%
| | Microsoft Edge in Microsoft Windows 10 Version 1703 allows an attacker to obtain information to furt… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-8567 | Microsoft | high | 7.8 | 32.4%
| | A remote code execution vulnerability exists in Microsoft Excel for Mac 2011 when it fails to proper… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-11766 | Microsoft | high | 7.5 | 20.5%
| | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an att… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-11764 | Microsoft | high | 7.5 | 76.7%
| | Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to exe… | Sep 13, 2017 | May 13, 2026 |
| | CVE-2017-11761 | Microsoft | medium | 5.3 | 8.0%
| | Microsoft Exchange Server 2013 and Microsoft Exchange Server 2016 allow an input sanitization issue … | Sep 13, 2017 | May 13, 2026 |
| | CVE-2014-9635 |  Apache | medium | 5.3 | 0.6%
| | Jenkins before 1.586 does not set the HttpOnly flag in a Set-Cookie header for session cookies when … | Sep 12, 2017 | May 13, 2026 |
| | CVE-2014-9634 | Apache | medium | 5.3 | 0.7%
| | Jenkins before 1.586 does not set the secure flag on session cookies when run on Tomcat 7.0.41 or la… | Sep 12, 2017 | May 13, 2026 |
| | CVE-2017-8041 |  VMware | medium | 6.1 | 0.2%
| | In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior to 1.3.4 and 1.4.x versions p… | Sep 9, 2017 | May 13, 2026 |
| | CVE-2017-8040 | VMware | medium | 6.5 | 0.1%
| | In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior to 1.3.4 and 1.4.x versions p… | Sep 9, 2017 | May 13, 2026 |
| | CVE-2017-6794 |  Cisco | medium | 6.7 | 0.2%
| | A vulnerability in the CLI command-parsing code of Cisco Meeting Server could allow an authenticated… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-6793 | Cisco | medium | 6.5 | 0.2%
| | A vulnerability in the Inventory Management feature of Cisco Prime Collaboration Provisioning Tool c… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-6792 | Cisco | medium | 6.5 | 0.4%
| | A vulnerability in the batch provisioning feature in Cisco Prime Collaboration Provisioning Tool cou… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-6791 | Cisco | high | 7.5 | 1.8%
| | A vulnerability in the Trust Verification Service (TVS) of Cisco Unified Communications Manager coul… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-6789 | Cisco | medium | 6.1 | 0.3%
| | A vulnerability in the Cisco Unified Intelligence Center web interface could allow an unauthenticate… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-6780 | Cisco | high | 7.5 | 0.5%
| | A vulnerability in the TCP throttling process for Cisco IoT Field Network Director (IoT-FND) could a… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12227 | Cisco | medium | 5.4 | 0.2%
| | A vulnerability in the SQL database interface for Cisco Emergency Responder could allow an authentic… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12225 | Cisco | medium | 6.5 | 0.4%
| | A vulnerability in the web functionality of the Cisco Prime LAN Management Solution could allow an a… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12224 | Cisco | medium | 6.5 | 0.4%
| | A vulnerability in the ability for guest users to join meetings via a hyperlink with Cisco Meeting S… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12221 | Cisco | medium | 5.4 | 0.4%
| | A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticat… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12220 | Cisco | medium | 6.1 | 0.1%
| | A vulnerability in the web-based management interface of Cisco Firepower Management Center could all… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12216 | Cisco | high | 8.8 | 1.6%
| | A vulnerability in the web-based user interface of Cisco SocialMiner could allow an unauthenticated,… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2017-12212 | Cisco | medium | 6.1 | 0.3%
| | A vulnerability in the web framework of Cisco Unity Connection could allow an unauthenticated, remot… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2015-3250 | Apache | high | 7.5 | 2.0%
| | Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecifie… | Sep 7, 2017 | May 13, 2026 |
| | CVE-2016-3086 | Apache | critical | 9.8 | 0.4%
| | The YARN NodeManager in Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3 can leak the passwor… | Sep 5, 2017 | May 13, 2026 |
| | CVE-2017-3898 |  Trellix | medium | 5.9 | 7.2%
| | A man-in-the-middle attack vulnerability in the non-certificate-based authentication mechanism in Mc… | Sep 1, 2017 | May 13, 2026 |
| | CVE-2017-3897 | Trellix | critical | 9.8 | 4.1%
| | A Code Injection vulnerability in the non-certificate-based authentication mechanism in McAfee Live … | Sep 1, 2017 | May 13, 2026 |
| | CVE-2016-5001 | Apache | medium | 5.5 | 0.1%
| | This is an information disclosure vulnerability in Apache Hadoop before 2.6.4 and 2.7.x before 2.7.2… | Aug 30, 2017 | May 13, 2026 |
| | CVE-2016-6800 | Apache | medium | 6.1 | 1.3%
| | The default configuration of the Apache OFBiz framework offers a blog functionality. Different users… | Aug 30, 2017 | May 13, 2026 |
| | CVE-2016-4462 | Apache | high | 8.8 | 0.5%
| | By manipulating the URL parameter externalLoginKey, a malicious, logged in user could pass valid Fre… | Aug 30, 2017 | May 13, 2026 |
| | CVE-2017-3163 | Apache | high | 7.5 | 11.9%
| | When using the Index Replication feature, Apache Solr nodes can pull index files from a master/leade… | Aug 30, 2017 | May 13, 2026 |
| | CVE-2017-3155 | Apache | medium | 6.1 | 1.9%
| | Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to cross frame scr… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2017-3154 | Apache | high | 7.5 | 0.8%
| | Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included stack trac… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2017-3153 | Apache | medium | 6.1 | 1.4%
| | Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Reflected XSS i… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2017-3152 | Apache | medium | 6.1 | 1.4%
| | Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to DOM XSS in the … | Aug 29, 2017 | May 13, 2026 |
| | CVE-2017-3151 | Apache | medium | 6.1 | 1.0%
| | Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Stored Cross-Si… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2017-3150 | Apache | medium | 6.1 | 1.0%
| | Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating use cookies that could be accessible to … | Aug 29, 2017 | May 13, 2026 |
| | CVE-2016-8752 | Apache | high | 7.5 | 1.0%
| | Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allow access to… | Aug 29, 2017 | May 13, 2026 |
| | CVE-2015-5209 | Apache | high | 7.5 | 1.4%
| | Apache Struts 2.x before 2.3.24.1 allows remote attackers to manipulate Struts internals, alter user… | Aug 29, 2017 | May 13, 2026 |