Vulnerability in Adobe Coldfusion
CVE-2013-3336
Unspecified vulnerability in Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote attackers to read arbitrary files via unknown vectors.
EPSS: 0.859 (99.4th percentile) — read the EPSS interpretation.
Affected products
- Adobe Coldfusion — versions 9.0, 9.0.1, 9.0.2
- N/a — versions n/a
Public proof-of-concept exploits
References
- 25305 (exploit, x_refsource_EXPLOIT-DB)
- psirt@adobe.com (x_refsource_CONFIRM, Vendor Advisory)
- psirt@adobe.com (x_refsource_CONFIRM)
Frequently asked questions
- What is CVE-2013-3336?
- CVE-2013-3336 is a vulnerability in Adobe Coldfusion. Published 2013-05-09.
- Is CVE-2013-3336 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.