admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-30 18:04:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2021-04-16 15:00:40 +00:00
parent 1be9b4688e
commit 9b413c1157
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
2021/21xxx/CVE-2021-21087.json
View File

@ -16,10 +16,6 @@
"product_name": "ColdFusion",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_value": "2021.001.20135"
},
{
"version_affected": "<=",
"version_value": "2016.16"
@ -28,6 +24,10 @@
"version_affected": "<=",
"version_value": "2018.10"
},
{
"version_affected": "<=",
"version_value": "2021.0.0.323925"
},
{
"version_affected": "<=",
"version_value": "None"
@ -49,7 +49,7 @@
"description_data": [
{
"lang": "eng",
"value": "Adobe Coldfusion versions 2016 (update 16 and earlier) and 2018 (update 10 and earlier) are affected by an Improper Neutralization of Directives in Dynamically Evaluated Code (\u2018Eval Injection\u2019) vulnerability. An attacker could abuse this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction."
"value": "Adobe Coldfusion versions 2016 (update 16 and earlier), 2018 (update 10 and earlier) and 2021.0.0.323925 are affected by an Improper Neutralization of Directives in Dynamically Evaluated Code (\u2018Eval Injection\u2019) vulnerability. An attacker could abuse this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction."
}
]
},