Vulnerability Description
Adobe ColdFusion 9.0, 9.0.1, and 9.0.2 allows attackers to obtain sensitive information via unspecified vectors, as exploited in the wild in January 2013.
CVSS Score
7.5
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Coldfusion | 9.0 |
| Apple | Mac Os X | - |
| Microsoft | Windows | - |
| Opengroup | Unix | - |
References
- http://www.adobe.com/support/security/advisories/apsa13-01.htmlVendor Advisory
- http://www.adobe.com/support/security/bulletins/apsb13-03.htmlNot Applicable
- http://www.adobe.com/support/security/advisories/apsa13-01.htmlVendor Advisory
- http://www.adobe.com/support/security/bulletins/apsb13-03.htmlNot Applicable
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-US Government Resource
FAQ
What is CVE-2013-0631?
CVE-2013-0631 is a vulnerability with a CVSS score of 7.5 (HIGH). Adobe ColdFusion 9.0, 9.0.1, and 9.0.2 allows attackers to obtain sensitive information via unspecified vectors, as exploited in the wild in January 2013.
How severe is CVE-2013-0631?
CVE-2013-0631 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-0631?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Coldfusion, Apple Mac Os X, Microsoft Windows, Opengroup Unix.