Lucene search

K

AdobeCVELIST:CVE-2010-0185

HistoryFeb 03, 2010 - 6:00 p.m.

CVE-2010-0185

2010-02-0318:00:00

adobe

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

82.1%

The default configuration of Adobe ColdFusion 9.0 does not restrict access to collections that have been created by the Solr Service, which allows remote attackers to obtain collection metadata, search information, and index data via a request to an unspecified URL.

References

kb2.adobe.com/cps/807/cpsid_80719.html

osvdb.org/62037

secunia.com/advisories/38387

www.adobe.com/support/security/bulletins/apsb10-04.html

www.securityfocus.com/bid/38007

www.securitytracker.com/id?1023519

www.vupen.com/english/advisories/2010/0259

exchange.xforce.ibmcloud.com/vulnerabilities/55997

6.7 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

82.1%

Related for CVELIST:CVE-2010-0185

prion1 nvd1 dsquare1 cve1 hackerone1