CVE-2019-8256
CVE-2019-8256
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 4.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
19 Dec 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
ColdFusion versions Update 6 and earlier have an insecure inherited permissions of default installation directory vulnerability. Successful exploitation could lead to privilege escalation.
Affected products
Adobe · ColdFusionWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →