CVE-2014-5315

Published Sep 26, 2014

Last updated 7 years ago

Overview

Description: Cross-site scripting (XSS) vulnerability in the Help page in Adobe Acrobat 9.5.2 and earlier and ColdFusion 8.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Source: vultures@jpcert.or.jp
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-79

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:adobe:coldfusion:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2E1F57AD-3FE8-45F5-ACAC-0AA2FE5FF74D",
            "versionEndIncluding": "8.0.1"
          },
          {
            "criteria": "cpe:2.3:a:adobe:coldfusion:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD6C1877-7412-4FBE-9641-334971F9D153"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C433B37-D81A-4A0E-869D-78755C62AE1F",
            "versionEndIncluding": "9.5.2"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AA53564-9ACD-4CFB-9AAC-A77440026A57"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7EC46E3-77B7-4455-B3E0-A45C6B69B3DC"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F475858-DCE2-4C93-A51A-04718DF17593"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88687272-4CD0-42A2-B727-C322ABDE3549"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E5C4FA4-3786-47AF-BD7D-8E75927EB3AA"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B35CC915-EEE3-4E86-9E09-1893C725E07B"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76201694-E5C5-4CA3-8919-46937AFDAAE3"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "397AB988-1C2C-4247-9B34-806094197CB5"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8FA0B8C3-8060-4685-A241-9852BD63B7A0"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4AB9BBDE-634A-47CF-BA49-67382B547900"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F56B1726-4F05-4732-9D8B-077EF593EAEC"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A258374F-55CB-48D2-9094-CD70E1288F60"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "627B0DA4-E600-49F1-B455-B4E151B33236"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "54BD8F96-BB75-4961-B1E0-049F2273100D"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C14B310-65F0-475D-A2DD-0AD706805A99"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "356A0FAF-A25C-4D11-A70F-94B311B5778E"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.4.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "958768B5-ABA3-4843-986D-499AD480832B"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.4.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0335CEAA-ED55-46AA-98D9-693733CDA68C"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.4.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "314014C8-527A-4D6D-B9BF-30084178C9B9"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D12CA81D-6CDD-4FB4-8DE2-004D783BADE0"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6AF167B4-0D05-490A-9A11-0447D8AA441B"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References