Home
Mapping Frameworks
Known Exploited Vulnerabilities Home
Adobe ColdFusion Authentication Bypass Vulnerability

Known Exploited Vulnerabilities CVE-2013-0625 Mappings

Adobe ColdFusion 9.0, 9.0.1, and 9.0.2, when a password is not configured, allows remote attackers to bypass authentication and possibly execute arbitrary code via unspecified vectors, as exploited in the wild in January 2013.

Mappings

Capability ID	Capability Description	Mapping Type	ATT&CK ID	ATT&CK Name	Notes
CVE-2013-0625	Adobe ColdFusion Authentication Bypass Vulnerability	exploitation_technique	T1190	Exploit Public-Facing Application	Comments This vulnerability is exploited because of password misconfiguration. References https://www.itnews.com.au/news/a-million-drivers-licenses-possibly-stolen-via-coldfusion-hole-342953