- EPSS 6.13%
- Veröffentlicht 16.05.2013 11:45:30
- Zuletzt bearbeitet 29.04.2026 01:13:23
Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 11, 9.0.1 before Update 10, 9.0.2 before Update 5, and 10 before Update 10 allows remote attackers to execute arbitrary code via unknown vectors.
- EPSS 74.27%
- Veröffentlicht 09.05.2013 12:31:19
- Zuletzt bearbeitet 29.04.2026 01:13:23
Unspecified vulnerability in Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote attackers to read arbitrary files via unknown vectors.
CVE-2013-1387
- EPSS 4.6%
- Veröffentlicht 10.04.2013 03:48:20
- Zuletzt bearbeitet 29.04.2026 01:13:23
Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 10, 9.0.1 before Update 9, 9.0.2 before Update 4, and 10 before Update 9 allows attackers to impersonate users via unknown vectors.
CVE-2013-1388
- EPSS 4.54%
- Veröffentlicht 10.04.2013 03:48:20
- Zuletzt bearbeitet 29.04.2026 01:13:23
Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 10, 9.0.1 before Update 9, 9.0.2 before Update 4, and 10 before Update 9 allows attackers to obtain administrator-console access via unknown vectors.
- EPSS 93.69%
- Veröffentlicht 17.01.2013 00:55:01
- Zuletzt bearbeitet 21.04.2026 21:01:44
administrator.cfc in Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote attackers to bypass authentication and possibly execute arbitrary code by logging in to the RDS component using the default empty password and leveraging this session to ac...
CVE-2013-0629
- EPSS 65.9%
- Veröffentlicht 09.01.2013 01:55:03
- Zuletzt bearbeitet 16.06.2026 23:49:47
Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10, when a password is not configured, allows attackers to access restricted directories via unspecified vectors, as exploited in the wild in January 2013.
CVE-2013-0631
- EPSS 65.87%
- Veröffentlicht 09.01.2013 01:55:03
- Zuletzt bearbeitet 16.06.2026 23:49:47
Adobe ColdFusion 9.0, 9.0.1, and 9.0.2 allows attackers to obtain sensitive information via unspecified vectors, as exploited in the wild in January 2013.
CVE-2013-0625
- EPSS 93.8%
- Veröffentlicht 09.01.2013 01:55:00
- Zuletzt bearbeitet 16.06.2026 23:49:47
Adobe ColdFusion 9.0, 9.0.1, and 9.0.2, when a password is not configured, allows remote attackers to bypass authentication and possibly execute arbitrary code via unspecified vectors, as exploited in the wild in January 2013.
CVE-2012-5675
- EPSS 0.72%
- Veröffentlicht 12.12.2012 11:38:44
- Zuletzt bearbeitet 16.06.2026 23:47:13
Adobe ColdFusion 9.0 through 9.0.2, and 10, allows local users to bypass intended shared-hosting sandbox permissions via unspecified vectors.
CVE-2012-5674
- EPSS 4.12%
- Veröffentlicht 20.11.2012 05:52:01
- Zuletzt bearbeitet 16.06.2026 23:47:13
Unspecified vulnerability in Adobe ColdFusion 10 before Update 5, when Internet Information Services (IIS) is used, allows attackers to cause a denial of service via unknown vectors.