CVE Daily

CVE-2012-5675

Adobe ColdFusion 9.0 through 9.0.2, and 10, allows local users to bypass intende...

Medium CVSS 4.4

Overview

Adobe ColdFusion 9.0 through 9.0.2, and 10, allows local users to bypass intended shared-hosting sandbox permissions via unspecified vectors.

CWE: CWE-264 Published: 2012-12-12T11:38:44.873
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 4.4 (MEDIUM)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags