Search Results (Refine Search)
- Keyword (text search): cpe:2.3:a:adobe:coldfusion:10.0:update22:*:*:*:*:*:*
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2017-3066 |
Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a Java deserialization vulnerability in the Apache BlazeDS library. Successful exploitation could lead to arbitrary code execution. Published: April 27, 2017; 10:59:00 AM -0400 |
V3.1: 9.8 CRITICAL V2.0: 10.0 HIGH |
CVE-2017-3008 |
Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a reflected cross-site scripting vulnerability. Published: April 27, 2017; 10:59:00 AM -0400 |
V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |