CVE-2009-1876 — Adobe Coldfusion vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

1.5%

top 19.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Coldfusion

Timeline

PublishedAug 18

Latest updateMay 2

Description

Adobe ColdFusion 8.0.1 and earlier might allow attackers to obtain sensitive information via unspecified vectors, related to a "double-encoded null character vulnerability."

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDadobe/coldfusion8.0.1+7

Patches

Patch: www.adobe.com ↗Patch: www.adobe.com ↗

🔴Vulnerability Details

GHSA

GHSA-78wj-vpqv-cg4r: Adobe ColdFusion 8↗2022-05-02

▶

CVEList

CVE-2009-1876: Adobe ColdFusion 8↗2009-08-18

▶