Vulnerability Details CVE-2019-7092
ColdFusion versions Update 1 and earlier, Update 7 and earlier, and Update 15 and earlier have a cross site scripting vulnerability. Successful exploitation could lead to information disclosure .
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 79.7%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2019-7092
-
cpe:2.3:a:adobe:coldfusion:11.0
-
cpe:2.3:a:adobe:coldfusion:2016
-
cpe:2.3:a:adobe:coldfusion:2018