VIR Vulnerability Intelligence Relay

CVE-2013-5328

high
Published 2013-11-13 · Modified 2026-04-29
CVSS v3
CVSS v2
7.8
VIR risk
7.8

Description

Adobe ColdFusion 10 before Update 12 allows remote attackers to read arbitrary files via unspecified vectors.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: psirt@adobe.com — http://www.adobe.com/support/security/bulletins/apsb13-27.html

Application impact
VendorProductVersionsFixed
adobecoldfusion{"endIncluding":"10.0"}
adobecoldfusion10.0

References

CWEs

CWE-264

Verify integrity in audit chain (admin only). AS-IS.