Vulnerability Details CVE-2017-3008
Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a reflected cross-site scripting vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.3%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2017-3008
-
cpe:2.3:a:adobe:coldfusion:10.0
-
cpe:2.3:a:adobe:coldfusion:11.0
-
cpe:2.3:a:adobe:coldfusion:2016