7.5
CVE-2008-1203
- EPSS 15.48%
- Veröffentlicht 12.03.2008 00:44:00
- Zuletzt bearbeitet 16.06.2026 22:51:13
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The administrator interface for Adobe ColdFusion 8 and ColdFusion MX7 does not log failed authentication attempts, which makes it easier for remote attackers to conduct brute force attacks without detection.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Adobe ≫ Coldfusion Version7.0
Adobe ≫ Coldfusion Version8.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 15.48% | 0.964 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/29332
http://www.vupen.com/english/advisories/2008/0862/references
http://www.adobe.com/support/security/bulletins/apsb08-08.html
http://www.securityfocus.com/bid/28207
http://www.securitytracker.com/id?1019600
https://exchange.xforce.ibmcloud.com/vulnerabilities/41150