Lucene search
HistorySep 26, 2014 - 10:55 a.m.
CVE-2014-5315
cve-2014-5315
cross-site scripting
xss
adobe acrobat
coldfusion
vulnerability
security
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.017 Low
EPSS
Percentile
88.0%
Cross-site scripting (XSS) vulnerability in the Help page in Adobe Acrobat 9.5.2 and earlier and ColdFusion 8.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected configurations
Node
adobecoldfusionRange≤8.0.1
ORadobecoldfusionMatch8.0
Node
adobeacrobatRange≤9.5.2
ORadobeacrobatMatch9.0
ORadobeacrobatMatch9.1
ORadobeacrobatMatch9.1.1
ORadobeacrobatMatch9.1.2
ORadobeacrobatMatch9.1.3
ORadobeacrobatMatch9.2
ORadobeacrobatMatch9.3
ORadobeacrobatMatch9.3.1
ORadobeacrobatMatch9.3.2
ORadobeacrobatMatch9.3.3
ORadobeacrobatMatch9.3.4
ORadobeacrobatMatch9.4
ORadobeacrobatMatch9.4.1
ORadobeacrobatMatch9.4.2
ORadobeacrobatMatch9.4.3
ORadobeacrobatMatch9.4.4
ORadobeacrobatMatch9.4.5
ORadobeacrobatMatch9.4.6
ORadobeacrobatMatch9.4.7
ORadobeacrobatMatch9.5
ORadobeacrobatMatch9.5.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| adobe:coldfusion | adobe coldfusion | le | 8.0.1 |
| adobe:coldfusion | adobe coldfusion | eq | 8.0 |
Related
jvn
jvn
nessus
nessus
Adobe Acrobat Help Page XSS (Mac OS X)
2014-09-23 00:00:00
Adobe Acrobat Help Page XSS
2014-09-23 00:00:00
openvas
openvas
Adobe Acrobat Help Page Cross Site Scripting Vulnerability - Windows
2017-12-29 00:00:00
Adobe ColdFusion Help Page Cross Site Scripting Vulnerability
2017-12-29 00:00:00
Adobe Acrobat Help Page Cross Site Scripting Vulnerability - Mac OS X
2017-12-29 00:00:00
cvelist
cvelist
CVE-2014-5315
2014-09-26 10:00:00
prion
prion
Cross site scripting
2014-09-26 10:55:00
nvd
nvd
CVE-2014-5315
2014-09-26 10:55:04
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.017 Low
EPSS
Percentile
88.0%
Related for CVE-2014-5315