Lucene search

[email protected]CVE-2008-4831

HistoryNov 10, 2008 - 2:12 p.m.

CVE-2008-4831

2008-11-1014:12:55

CWE-264

[email protected]

web.nvd.nist.gov

adobe

coldfusion

cve-2008-4831

vulnerability

sandbox restrictions

local users

sensitive information

privileges

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.5%

JSON

Unspecified vulnerability in Adobe ColdFusion 8 and 8.0.1 and ColdFusion MX 7.0.2 allows local users to bypass sandbox restrictions, and obtain sensitive information or possibly gain privileges, via unknown vectors.

Affected configurations

NVD

Node

adobecoldfusionMatch7.2unknownmx

adobecoldfusionMatch8.0

adobecoldfusionMatch8.0.1

CPENameOperatorVersion
adobe:coldfusionadobe coldfusioneq7.2
adobe:coldfusionadobe coldfusioneq8.0
adobe:coldfusionadobe coldfusioneq8.0.1

CPE	Name	Operator	Version
adobe:coldfusion	adobe coldfusion	eq	7.2
adobe:coldfusion	adobe coldfusion	eq	8.0
adobe:coldfusion	adobe coldfusion	eq	8.0.1

References

osvdb.org/49709

secunia.com/advisories/32567

www.adobe.com/support/security/bulletins/apsb08-21.html

www.securityfocus.com/bid/32130

www.securitytracker.com/id?1021145

www.vupen.com/english/advisories/2008/3032

Social References

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.5%

JSON

Related for CVE-2008-4831

nvd1 prion1 seebug1 cvelist1