exploitDog

GHSA-37rm-jxqj-2hjc

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Adobe ColdFusion 8 and MX 7 allows remote attackers to hijack sessions via unspecified vectors that trigger establishment of a session to a ColdFusion application in which the (1) CFID or (2) CFTOKEN cookies have empty values, possibly due to a session fixation vulnerability.

Adobe ColdFusion 8 and MX 7 allows remote attackers to hijack sessions via unspecified vectors that trigger establishment of a session to a ColdFusion application in which the (1) CFID or (2) CFTOKEN cookies have empty values, possibly due to a session fixation vulnerability.

Ссылки

EPSS

Процентиль: 90%

0.0543

Низкий

CVE ID

Связанные уязвимости

CVE-2007-5905

nvd

около 18 лет назад

Adobe ColdFusion 8 and MX 7 allows remote attackers to hijack sessions via unspecified vectors that trigger establishment of a session to a ColdFusion application in which the (1) CFID or (2) CFTOKEN cookies have empty values, possibly due to a session fixation vulnerability.

EPSS

Процентиль: 90%

0.0543

Низкий

CVE ID