← back
CVE-2010-0185

CVE-2010-0185

EPSS 4.3%
The default configuration of Adobe ColdFusion 9.0 does not restrict access to collections that have been created by the Solr Service, which allows remote attackers to obtain collection metadata, search information, and index data via a request to an unspecified URL.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://kb2.adobe.com/cps/807/cpsid_80719.htmlhttp://osvdb.org/62037http://secunia.com/advisories/38387https://exchange.xforce.ibmcloud.com/vulnerabilities/55997http://www.adobe.com/support/security/bulletins/apsb10-04.htmlhttp://www.securityfocus.com/bid/38007http://www.securitytracker.com/id?1023519http://www.vupen.com/english/advisories/2010/0259