Lucene search
AdobeCVE-2012-5675HistoryDec 12, 2012 - 11:38 a.m.
CVE-2012-5675
2012-12-1211:38:44
CWE-264
adobe
web.nvd.nist.gov
28
adobe
coldfusion
9.0
9.0.2
10
sandbox
bypass
security vulnerability
cve-2012-5675
CVSS2
4.4
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
28.2%
Adobe ColdFusion 9.0 through 9.0.2, and 10, allows local users to bypass intended shared-hosting sandbox permissions via unspecified vectors.
Affected configurations
Node
adobecoldfusionMatch9.0
ORadobecoldfusionMatch9.0.1
ORadobecoldfusionMatch9.0.2
ORadobecoldfusionMatch10.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| adobe | coldfusion | 9.0 | cpe:2.3:a:adobe:coldfusion:9.0:*:*:*:*:*:*:* |
| adobe | coldfusion | 9.0.1 | cpe:2.3:a:adobe:coldfusion:9.0.1:*:*:*:*:*:*:* |
| adobe | coldfusion | 9.0.2 | cpe:2.3:a:adobe:coldfusion:9.0.2:*:*:*:*:*:*:* |
| adobe | coldfusion | 10.0 | cpe:2.3:a:adobe:coldfusion:10.0:*:*:*:*:*:*:* |
Related
nessus
nessus
Adobe ColdFusion Unspecified Sandbox Bypass (APSB12-26) (credentialed check)
2013-01-24 00:00:00
prion
prion
Design/Logic Flaw
2012-12-12 11:38:00
nvd
nvd
CVE-2012-5675
2012-12-12 11:38:44
cvelist
cvelist
CVE-2012-5675
2012-12-12 11:00:00
CVSS2
4.4
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
28.2%
Related for CVE-2012-5675