| | CVE-2016-4460 |  Apache | critical | 9.8 | 1.1%
| | Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication. | Aug 22, 2017 | May 13, 2026 |
| | CVE-2015-5258 |  VMware | high | 8.8 | 0.2%
| | Cross-site request forgery (CSRF) vulnerability in springframework-social before 1.1.3. | Aug 22, 2017 | May 13, 2026 |
| | CVE-2017-6790 |  Cisco | medium | 6.8 | 1.8%
| | A vulnerability in the Session Initiation Protocol (SIP) on the Cisco TelePresence Video Communicati… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6788 | Cisco | medium | 6.1 | 0.2%
| | The WebLaunch functionality of Cisco AnyConnect Secure Mobility Client Software contains a vulnerabi… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6786 | Cisco | medium | 6.3 | 0.1%
| | A vulnerability in Cisco Elastic Services Controller could allow an authenticated, local, unprivileg… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6785 | Cisco | medium | 4.3 | 0.2%
| | A vulnerability in configuration modification permissions validation for Cisco Unified Communication… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6783 | Cisco | medium | 4.3 | 0.3%
| | A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6782 | Cisco | medium | 5.4 | 0.2%
| | A vulnerability in the administrative web interface of Cisco Prime Infrastructure could allow an aut… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6781 | Cisco | medium | 5.3 | 0.1%
| | A vulnerability in the management of shell user accounts for Cisco Policy Suite (CPS) Software for C… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6778 | Cisco | medium | 6.5 | 0.2%
| | A vulnerability in the Elastic Services Controller (ESC) web interface of the Cisco Ultra Services P… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6777 | Cisco | medium | 4.9 | 0.2%
| | A vulnerability in the ConfD server of the Cisco Elastic Services Controller (ESC) could allow an au… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6776 | Cisco | medium | 6.1 | 0.2%
| | A vulnerability in the web framework of Cisco Elastic Services Controller (ESC) could allow an unaut… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6775 | Cisco | medium | 5.7 | 0.1%
| | A vulnerability in the CLI of Cisco ASR 5000 Series Aggregated Services Routers running the Cisco St… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6774 | Cisco | medium | 5.0 | 0.2%
| | A vulnerability in Cisco ASR 5000 Series Aggregated Services Routers running the Cisco StarOS operat… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6773 | Cisco | medium | 6.7 | 0.1%
| | A vulnerability in the CLI of Cisco ASR 5000 Series Aggregated Services Routers running the Cisco St… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6772 | Cisco | medium | 4.3 | 0.2%
| | A vulnerability in Cisco Elastic Services Controller (ESC) could allow an authenticated, remote atta… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6771 | Cisco | high | 7.5 | 0.4%
| | A vulnerability in the AutoVNF automation tool of the Cisco Ultra Services Framework could allow an … | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6768 | Cisco | high | 7.8 | 0.1%
| | A vulnerability in the build procedure for certain executable system files installed at boot time on… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6767 | Cisco | high | 7.1 | 0.9%
| | A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) could allow an authenti… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-6710 | Cisco | high | 8.1 | 1.3%
| | A vulnerability in the Cisco Virtual Network Function (VNF) Element Manager could allow an authentic… | Aug 17, 2017 | May 13, 2026 |
| | CVE-2017-8665 |  Microsoft | high | 7.8 | 10.8%
| | The Xamarin.iOS update component on systems running macOS allows an attacker to run arbitrary code a… | Aug 15, 2017 | May 13, 2026 |
| | CVE-2017-9802 | Apache | medium | 6.1 | 0.6%
| | The Javascript method Sling.evalString() in Apache Sling Servlets Post before 2.3.22 uses the javasc… | Aug 14, 2017 | May 13, 2026 |
| | CVE-2017-9800 | Apache | critical | 9.8 | 59.1%
| | A maliciously constructed svn+ssh:// URL would cause Subversion clients before 1.8.19, 1.9.x before … | Aug 11, 2017 | May 13, 2026 |
| | CVE-2017-7675 | Apache | high | 7.5 | 3.7%
| | The HTTP/2 implementation in Apache Tomcat 9.0.0.M1 to 9.0.0.M21 and 8.5.0 to 8.5.15 bypassed a numb… | Aug 11, 2017 | May 13, 2026 |
| | CVE-2017-7674 | Apache | medium | 4.3 | 5.9%
| | The CORS Filter in Apache Tomcat 9.0.0.M1 to 9.0.0.M21, 8.5.0 to 8.5.15, 8.0.0.RC1 to 8.0.44 and 7.0… | Aug 11, 2017 | May 13, 2026 |
| | CVE-2016-6796 | Apache | high | 7.5 | 0.8%
| | A malicious web application running on Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1… | Aug 11, 2017 | May 13, 2026 |
| | CVE-2017-8658 | Microsoft | critical | 9.8 | 36.0%
| | A remote code execution vulnerability exists in the way that the Chakra JavaScript engine renders wh… | Aug 11, 2017 | May 13, 2026 |
| | CVE-2016-8745 | Apache | high | 7.5 | 10.9%
| | A bug in the error handling of the send file code for the NIO HTTP connector in Apache Tomcat 9.0.0.… | Aug 10, 2017 | May 13, 2026 |
| | CVE-2016-6817 | Apache | high | 7.5 | 0.8%
| | The HTTP/2 header parser in Apache Tomcat 9.0.0.M1 to 9.0.0.M11 and 8.5.0 to 8.5.6 entered an infini… | Aug 10, 2017 | May 13, 2026 |
| | CVE-2016-6797 | Apache | high | 7.5 | 0.3%
| | The ResourceLinkFactory implementation in Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.… | Aug 10, 2017 | May 13, 2026 |
| | CVE-2017-7737 |  Fortinet | medium | 4.9 | 0.4%
| | An information disclosure vulnerability in Fortinet FortiWeb 5.8.2 and below versions allows logged-… | Aug 10, 2017 | May 13, 2026 |
| | CVE-2017-8518 | Microsoft | high | 7.5 | 24.0%
| | Microsoft Edge allows a remote code execution vulnerability due to the way it accesses objects in me… | Aug 10, 2017 | May 13, 2026 |
| | CVE-2017-3156 | Apache | high | 7.5 | 6.5%
| | The OAuth2 Hawk and JOSE MAC Validation code in Apache CXF prior to 3.0.13 and 3.1.x prior to 3.1.10… | Aug 10, 2017 | May 13, 2026 |
| | CVE-2016-8739 | Apache | high | 7.5 | 2.7%
| | The JAX-RS module in Apache CXF prior to 3.0.12 and 3.1.x prior to 3.1.9 provides a number of Atom J… | Aug 10, 2017 | May 13, 2026 |
| | CVE-2016-6812 | Apache | medium | 6.1 | 8.6%
| | The HTTP transport module in Apache CXF prior to 3.0.12 and 3.1.x prior to 3.1.9 uses FormattedServi… | Aug 10, 2017 | May 13, 2026 |
| | CVE-2016-6794 | Apache | medium | 5.3 | 0.3%
| | When a SecurityManager is configured, a web application's ability to read system properties should b… | Aug 10, 2017 | May 13, 2026 |
| | CVE-2016-5018 | Apache | critical | 9.1 | 0.9%
| | In Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.… | Aug 10, 2017 | May 13, 2026 |
| | CVE-2016-0762 | Apache | medium | 5.9 | 0.5%
| | The Realm implementations in Apache Tomcat versions 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 … | Aug 10, 2017 | May 13, 2026 |
| | CVE-2017-9799 | Apache | high | 8.8 | 0.9%
| | It was found that under some situations and configurations of Apache Storm 1.x before 1.0.4 and 1.1.… | Aug 9, 2017 | May 13, 2026 |
| | CVE-2017-11506 |  Tenable | high | 7.4 | 0.1%
| | When linking a Nessus scanner or agent to Tenable.io or other manager, Nessus 6.x before 6.11 does n… | Aug 9, 2017 | May 13, 2026 |
| | CVE-2017-8674 | Microsoft | high | 7.5 | 17.6%
| | Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the cont… | Aug 8, 2017 | May 13, 2026 |
| | CVE-2017-8672 | Microsoft | high | 7.5 | 17.6%
| | Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker … | Aug 8, 2017 | May 13, 2026 |
| | CVE-2017-8671 | Microsoft | high | 7.5 | 81.9%
| | Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker … | Aug 8, 2017 | May 13, 2026 |
| | CVE-2017-8670 | Microsoft | high | 7.5 | 79.0%
| | Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to exe… | Aug 8, 2017 | May 13, 2026 |
| | CVE-2017-8669 | Microsoft | high | 7.5 | 22.0%
| | Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows R… | Aug 8, 2017 | May 13, 2026 |
| | CVE-2017-8662 | Microsoft | medium | 4.3 | 14.6%
| | Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to disclose information due to how st… | Aug 8, 2017 | May 13, 2026 |
| | CVE-2017-8661 | Microsoft | high | 7.5 | 17.3%
| | Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to exe… | Aug 8, 2017 | May 13, 2026 |
| | CVE-2017-8659 | Microsoft | medium | 4.3 | 14.6%
| | Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to obtain information to further comp… | Aug 8, 2017 | May 13, 2026 |
| | CVE-2017-8657 | Microsoft | high | 7.5 | 57.7%
| | Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker … | Aug 8, 2017 | May 13, 2026 |
| | CVE-2017-8656 | Microsoft | high | 7.5 | 81.9%
| | Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to exe… | Aug 8, 2017 | May 13, 2026 |