CVE-2008-1203

The administrator interface for Adobe ColdFusion 8 and ColdFusion MX7 does not log failed authentication attempts, which makes it easier for remote attackers to conduct brute force attacks without detection.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
adobecoldfusion
7.0
adobecoldfusion
8.0
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/29332
http://www.adobe.com/support/security/bulletins/apsb08-08.html
http://www.securityfocus.com/bid/28207
http://www.securitytracker.com/id?1019600
http://www.vupen.com/english/advisories/2008/0862/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41150
http://secunia.com/advisories/29332
http://www.adobe.com/support/security/bulletins/apsb08-08.html
http://www.securityfocus.com/bid/28207
http://www.securitytracker.com/id?1019600
http://www.vupen.com/english/advisories/2008/0862/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41150