What is the severity of CVE-2019-7092?

The severity of CVE-2019-7092 is medium with a CVSS score of 6.1.

How can CVE-2019-7092 be exploited?

CVE-2019-7092 can be exploited through cross site scripting (XSS) attacks.

What is the impact of CVE-2019-7092?

Successful exploitation of CVE-2019-7092 can lead to information disclosure.

Where can I find more information about CVE-2019-7092?

More information about CVE-2019-7092 can be found at: [https://helpx.adobe.com/security/products/coldfusion/apsb19-10.html](https://helpx.adobe.com/security/products/coldfusion/apsb19-10.html)

Vulnerability/
CVE-2019-7092

medium

6.1

CWE

24/5/2019

4/9/2020

CVE-2019-7092: XSS

First published: Fri May 24 2019(Updated: )

ColdFusion versions Update 1 and earlier, Update 7 and earlier, and Update 15 and earlier have a cross site scripting vulnerability. Successful exploitation could lead to information disclosure .

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe ColdFusion	=11.0
Adobe ColdFusion	=11.0-update1
Adobe ColdFusion	=11.0-update10
Adobe ColdFusion	=11.0-update11
Adobe ColdFusion	=11.0-update12
Adobe ColdFusion	=11.0-update13
Adobe ColdFusion	=11.0-update14
Adobe ColdFusion	=11.0-update15
Adobe ColdFusion	=11.0-update2
Adobe ColdFusion	=11.0-update3
Adobe ColdFusion	=11.0-update4
Adobe ColdFusion	=11.0-update5
Adobe ColdFusion	=11.0-update6
Adobe ColdFusion	=11.0-update7
Adobe ColdFusion	=11.0-update8
Adobe ColdFusion	=11.0-update9
Adobe ColdFusion	=2016
Adobe ColdFusion	=2016-update1
Adobe ColdFusion	=2016-update2
Adobe ColdFusion	=2016-update3
Adobe ColdFusion	=2016-update4
Adobe ColdFusion	=2016-update5
Adobe ColdFusion	=2016-update6
Adobe ColdFusion	=2016-update7
Adobe ColdFusion	=2018
Adobe ColdFusion	=2018-update1

Never miss a vulnerability like this again

Reference Links

https://helpx.adobe.com/security/products/coldfusion/apsb19-10.html

Frequently Asked Questions

What is the severity of CVE-2019-7092?
The severity of CVE-2019-7092 is medium with a CVSS score of 6.1.
How can CVE-2019-7092 be exploited?
CVE-2019-7092 can be exploited through cross site scripting (XSS) attacks.
What is the impact of CVE-2019-7092?
Successful exploitation of CVE-2019-7092 can lead to information disclosure.
Which versions of ColdFusion are affected by CVE-2019-7092?
ColdFusion versions Update 1 and earlier, Update 7 and earlier, and Update 15 and earlier are affected by CVE-2019-7092.
Where can I find more information about CVE-2019-7092?
More information about CVE-2019-7092 can be found at: [https://helpx.adobe.com/security/products/coldfusion/apsb19-10.html](https://helpx.adobe.com/security/products/coldfusion/apsb19-10.html)

collector/nvd-index
agent/type
agent/severity
agent/references
agent/weakness
agent/author
agent/tags
agent/event
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
vendor/adobe
canonical/adobe coldfusion
version/adobe coldfusion/11.0
version/adobe coldfusion/11.0-update1
version/adobe coldfusion/11.0-update10
version/adobe coldfusion/11.0-update11
version/adobe coldfusion/11.0-update12
version/adobe coldfusion/11.0-update13
version/adobe coldfusion/11.0-update14
version/adobe coldfusion/11.0-update15
version/adobe coldfusion/11.0-update2
version/adobe coldfusion/11.0-update3
version/adobe coldfusion/11.0-update4
version/adobe coldfusion/11.0-update5
version/adobe coldfusion/11.0-update6
version/adobe coldfusion/11.0-update7
version/adobe coldfusion/11.0-update8
version/adobe coldfusion/11.0-update9
version/adobe coldfusion/2016
version/adobe coldfusion/2016-update1
version/adobe coldfusion/2016-update2
version/adobe coldfusion/2016-update3
version/adobe coldfusion/2016-update4
version/adobe coldfusion/2016-update5
version/adobe coldfusion/2016-update6
version/adobe coldfusion/2016-update7
version/adobe coldfusion/2018
version/adobe coldfusion/2018-update1

CVE-2019-7092: XSS

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2019-7092?

How can CVE-2019-7092 be exploited?

What is the impact of CVE-2019-7092?

Which versions of ColdFusion are affected by CVE-2019-7092?

Where can I find more information about CVE-2019-7092?

Company

Resources

Contact