Vulnerability Database

296,760

Total vulnerabilities in the database

CVE-2013-3350

Adobe ColdFusion 10 before Update 11 allows remote attackers to call ColdFusion Components (CFC) public methods via WebSockets.

Published: Jul 10, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-3350
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
adobe / coldfusion	10.0	10.0.x
adobe / coldfusion	10.0-update1	10.0-update1.x
adobe / coldfusion	10.0-update2	10.0-update2.x
adobe / coldfusion	10.0-update3	10.0-update3.x
adobe / coldfusion	10.0-update4	10.0-update4.x
adobe / coldfusion	10.0-update8	10.0-update8.x

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime