Lucene search
HistoryJun 16, 2011 - 11:55 p.m.
CVE-2011-0629
cve-2011-0629
csrf
adobe coldfusion
remote attackers
authentication hijacking
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
45.7%
Cross-site request forgery (CSRF) vulnerability in Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Affected configurations
Node
adobecoldfusionMatch8.0
ORadobecoldfusionMatch8.0.1
ORadobecoldfusionMatch9.0
ORadobecoldfusionMatch9.0.1
Related
nvd
nvd
CVE-2011-0629
2011-06-16 23:55:01
cvelist
cvelist
CVE-2011-0629
2011-06-16 23:00:00
prion
prion
Cross site request forgery (csrf)
2011-06-16 23:55:00
nessus
nessus
Adobe ColdFusion Multiple Vulnerabilities (APSB11-14) (credentialed check)
2011-07-08 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
45.7%
Related for CVE-2011-0629