Published: 19/12/2019 Updated: 21/07/2021

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

ColdFusion versions Update 6 and previous versions have an insecure inherited permissions of default installation directory vulnerability. Successful exploitation could lead to privilege escalation.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adobe coldfusion 2018

It's the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font

The Register • Shaun Nichols in San Francisco • 10 Dec 2019

End 2019 with a Patch Tuesday from Microsoft, Adobe, SAP and Intel

With the year winding to a close and the holiday parties set to kick off, admins will want to check out the December Patch Tuesday load from Microsoft, Adobe, Intel, and SAP and get them installed before downing the first of many egg nogs. This month is a relatively small patch bundle from Microsoft, with fixes kicked out for just 36 CVE-listed bugs, only seven of which are considered to be critical risks by Redmond standards. Not among those seven is CVE-2019-1458, a flaw believed to be under a...

CVE-2019-8256

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect