GCVE - cpe:2.3:a:adobe:coldfusion:10.0:-:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:adobe:coldfusion:10.0:-:*:*:*:*:*:*

part: a version: 10.0 update: -

Vendor	Adobe (`fb293c1b-cab3-5565-9184-186e4ece530b`)
Product	Coldfusion (`db90b161-3a2c-5267-99af-6a14e5723f4c`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2017-3066`	vulnerable	2026-06-03 14:37:09.428746	db.gcve.eu returned HTTP 503. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-3008`	vulnerable	2026-06-03 14:37:09.339243	db.gcve.eu returned HTTP 503. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-4159`	vulnerable	2026-06-03 14:35:47.424447	db.gcve.eu returned HTTP 503. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1115`	vulnerable	2026-06-03 14:35:30.678468	Details available Adobe ColdFusion 10 before Update 19, 11 before Update 8, and 2016 before Update 1 mishandles wildcards in name fields of X.509 certificates, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate. Published: 2016-05-11T01:00:00.000Z Updated: 2024-08-05T22:48:13.080Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1035829 http://www.securityfocus.com/bid/90514 https://helpx.adobe.com/security/products/coldfusion/apsb16-16.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1114`	vulnerable	2026-06-03 14:35:30.677550	Details available Adobe ColdFusion 10 before Update 19, 11 before Update 8, and 2016 before Update 1 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library. Published: 2016-05-11T01:00:00.000Z Updated: 2024-08-05T22:48:12.989Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/90506 https://helpx.adobe.com/security/products/coldfusion/apsb16-16.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1113`	vulnerable	2026-06-03 14:35:30.663236	Details available Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 10 before Update 19, 11 before Update 8, and 2016 before Update 1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2016-05-11T01:00:00.000Z Updated: 2024-08-05T22:48:12.951Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1035829 http://www.securityfocus.com/bid/90507 https://helpx.adobe.com/security/products/coldfusion/apsb16-16.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.