Vulnerability Details CVE-2013-0631
Adobe ColdFusion 9.0, 9.0.1, and 9.0.2 allows attackers to obtain sensitive information via unspecified vectors, as exploited in the wild in January 2013.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.753
EPSS Ranking 98.8%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Proposed Action
Adobe Coldfusion contains an unspecified vulnerability, which could result in information disclosure from a compromised server.
Ransomware Campaign
Unknown
References
- http://www.adobe.com/support/security/advisories/apsa13-01.html
- http://www.adobe.com/support/security/bulletins/apsb13-03.html
- http://www.adobe.com/support/security/advisories/apsa13-01.html
- http://www.adobe.com/support/security/bulletins/apsb13-03.html
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-0631
Products affected by CVE-2013-0631
-
cpe:2.3:a:adobe:coldfusion:9.0
-
cpe:2.3:a:adobe:coldfusion:9.0.1
-
cpe:2.3:a:adobe:coldfusion:9.0.2
-
cpe:2.3:o:apple:mac_os_x:-
-
cpe:2.3:o:microsoft:windows:-
-
cpe:2.3:o:opengroup:unix:-