Lucene search
K

228 matches found

EUVD
EUVD
added 2025/12/10 12:30 a.m.5 views

EUVD-2025-202345

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized read and write access. Exploitation o...

9.1CVSS6.1AI score0.00586EPSS
Exploits0References2
OSV
OSV
added 2025/12/10 12:16 a.m.8 views

CVE-2025-64898

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could result in limited unauthorized write access. An attacker could leverage this vulnerability to gain unauthorized access by exploiting improperly stored or...

5.3CVSS5.8AI score0.00388EPSS
Exploits0References1
OSV
OSV
added 2025/12/10 12:16 a.m.5 views

CVE-2025-64897

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Access Control vulnerability. A low privileged attacker could leverage this vulnerability to bypass security measures and gain limited unauthorized write access potentially resulting in denial of service...

5.6CVSS5.8AI score0.00111EPSS
Exploits0References1
NVD
NVD
added 2025/12/10 12:16 a.m.6 views

CVE-2025-64897

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Access Control vulnerability. A low privileged attacker could leverage this vulnerability to bypass security measures and gain limited unauthorized write access potentially resulting in denial of service...

5.6CVSS0.00111EPSS
Exploits0References1
NVD
NVD
added 2025/12/10 12:16 a.m.8 views

CVE-2025-64898

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could result in limited unauthorized write access. An attacker could leverage this vulnerability to gain unauthorized access by exploiting improperly stored or...

5.3CVSS0.00388EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.4 views

Adobe ColdFusion 安全漏洞

Adobe ColdFusion is a dynamic Web server platform and application development framework maintained by Adobe for rapidly building and deploying data-driven dynamic Web sites, Web applications, and enterprise-class services. Adobe ColdFusion suffers from an insufficiently protected credentials...

5.3CVSS5.8AI score0.00388EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 11:41 p.m.19 views

CVE-2025-64898

Adobe ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could allow limited unauthorized write access without user interaction. The CVE-2025-64898 entry is corroborated by multiple sources and advisories in the conn...

5.3CVSS6.4AI score0.00388EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/09 11:41 p.m.3 views

CVE-2025-64898 ColdFusion | Insufficiently Protected Credentials (CWE-522)

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could result in limited unauthorized write access. An attacker could leverage this vulnerability to gain unauthorized access by exploiting improperly stored or...

5.3CVSS6.4AI score0.00388EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 11:41 p.m.27 views

CVE-2025-64898 ColdFusion | Insufficiently Protected Credentials (CWE-522)

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could result in limited unauthorized write access. An attacker could leverage this vulnerability to gain unauthorized access by exploiting improperly stored or...

5.3CVSS0.00388EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 11:41 p.m.28 views

CVE-2025-61809 ColdFusion | Improper Input Validation (CWE-20)

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized read and write access. Exploitation o...

9.1CVSS0.00586EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 11:41 p.m.32 views

CVE-2025-64897 ColdFusion | Improper Access Control (CWE-284)

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Access Control vulnerability. A low privileged attacker could leverage this vulnerability to bypass security measures and gain limited unauthorized write access potentially resulting in denial of service...

5.6CVSS0.00111EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/09 11:41 p.m.4 views

CVE-2025-64897 ColdFusion | Improper Access Control (CWE-284)

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Access Control vulnerability. A low privileged attacker could leverage this vulnerability to bypass security measures and gain limited unauthorized write access potentially resulting in denial of service...

5.6CVSS6.3AI score0.00111EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 9:31 p.m.5 views

EUVD-2025-202309

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass...

3.3CVSS6.2AI score0.00387EPSS
Exploits0References2
NVD
NVD
added 2025/12/09 9:15 p.m.5 views

CVE-2025-64787

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass...

3.3CVSS0.00387EPSS
Exploits0References1
OSV
OSV
added 2025/12/09 9:15 p.m.3 views

CVE-2025-64787

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass...

4CVSS5.8AI score0.00387EPSS
Exploits0References1
OSV
OSV
added 2025/12/09 9:15 p.m.3 views

CVE-2025-64786

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to gain limited...

4CVSS5.8AI score0.00379EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 8:21 p.m.25 views

CVE-2025-64786

CVE-2025-64786 affects Adobe Acrobat Reader (versions including 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier). The issue is Improper Verification of Cryptographic Signature, resulting in a Security feature bypass with limited unauthorized write access. Exploita...

3.3CVSS5.3AI score0.00379EPSS
Exploits0References1Affected Software4
ATTACKERKB
ATTACKERKB
added 2025/12/09 8:21 p.m.5 views

CVE-2025-64786

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to gain limited...

4CVSS5.3AI score0.00379EPSS
Exploits0References2
CVE
CVE
added 2025/12/09 8:21 p.m.25 views

CVE-2025-64787

CVE-2025-64787 affects Adobe Acrobat/Reader on multiple versions (Reader: 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier) due to an Improper Verification of Cryptographic Signature (CWE-347) vulnerability that could bypass security features and grant limited unau...

3.3CVSS5.3AI score0.00387EPSS
Exploits0References1Affected Software4
Vulnrichment
Vulnrichment
added 2025/12/09 8:21 p.m.4 views

CVE-2025-64787 Acrobat Reader | Improper Verification of Cryptographic Signature (CWE-347)

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass...

3.3CVSS5.3AI score0.00387EPSS
Exploits0References1
Rows per page
Query Builder