CVE-2013-1389

Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 11, 9.0.1 before Update 10, 9.0.2 before Update 5, and 10 before Update 10 allows remote attackers to execute arbitrary code via unknown vectors.

Published: May 16, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-1389
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
adobe / coldfusion	9.0.1-update_9	9.0.1-update_9.x
adobe / coldfusion	9.0.2	9.0.2.x
adobe / coldfusion	9.0	9.0.x
adobe / coldfusion	10.0	10.0.x
adobe / coldfusion	9.0.2-update_4	9.0.2-update_4.x
adobe / coldfusion	9.0.1	9.0.1.x
adobe / coldfusion	9.0-update_10	9.0-update_10.x
adobe / coldfusion	10.0-update1	10.0-update1.x
adobe / coldfusion	10.0-update3	10.0-update3.x
adobe / coldfusion	10.0-update4	10.0-update4.x

http://www.adobe.com/support/security/bulletins/apsb13-13.html

Vulnerability Database

289,784

CVE-2013-1389