CVE-2013-0629
HIGH KEVAdobe ColdFusion <10 - Info Disclosure
Title source: llmDescription
Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10, when a password is not configured, allows attackers to access restricted directories via unspecified vectors, as exploited in the wild in January 2013.
Exploits (1)
References (4)
Scores
CVSS v3
7.5
EPSS
0.8181
EPSS Percentile
99.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CISA KEV
2022-03-07
VulnCheck KEV
2013-01-09
InTheWild.io
2013-01-18
ENISA EUVD
EUVD-2013-0640
Status
published
Products (4)
adobe/coldfusion
9.0
adobe/coldfusion
9.0.1
adobe/coldfusion
9.0.2
adobe/coldfusion
10.0
Published
Jan 09, 2013
KEV Added
Mar 07, 2022
Tracked Since
Feb 18, 2026