CVE-2012-5675Adobe Coldfusion vulnerability

CWE-2643 documents3 sources
Severity
4.4MEDIUMNVD
EPSS
0.1%
top 70.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Coldfusion
Timeline
PublishedDec 12
Latest updateMay 17

Description

Adobe ColdFusion 9.0 through 9.0.2, and 10, allows local users to bypass intended shared-hosting sandbox permissions via unspecified vectors.

CVSS vector

AV:L/AC:M/C:P/I:P/A:PExploitability: 3.4 | Impact: 6.4

Affected Packages1 packages

NVDadobe/coldfusion4 versions+3

Patches

Patch: www.adobe.comPatch: www.adobe.com

🔴Vulnerability Details

2
GHSA
GHSA-qjcv-p8rr-gwrf: Adobe ColdFusion 92022-05-17
CVEList
CVE-2012-5675: Adobe ColdFusion 92012-12-12
CVE-2012-5675 — Adobe Coldfusion vulnerability | cvebase