CVE-2013-0631

CVE Database · CVE-2013-0631

CVE-2013-0631

· HIGHAnalyzed

CVSS v3.1

7.5

EPSS

65.87%

Published

Jan 8, 2013

Modified

Apr 21, 2026

CISA Known Exploited Vulnerability

Added: 2022-03-07 · Due: 2022-09-07

Apply updates per vendor instructions.

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Adobe ColdFusion 9.0, 9.0.1, and 9.0.2 allows attackers to obtain sensitive information via unspecified vectors, as exploited in the wild in January 2013.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products (6)

adobe · coldfusionvulnerable

apple · mac_os_x

microsoft · windows

opengroup · unix

References (5)

http://www.adobe.com/support/security/advisories/apsa13-01.html

Vendor Advisory

http://www.adobe.com/support/security/bulletins/apsb13-03.html

Not Applicable

http://www.adobe.com/support/security/advisories/apsa13-01.html

Vendor Advisory

http://www.adobe.com/support/security/bulletins/apsb13-03.html

Not Applicable

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-0631

US Government Resource

KEV Catalog EPSS Scores Vendors All CVEs