Unrated severityNVD Advisory· Published Jul 10, 2013· Updated Jun 16, 2026
CVE-2013-3350
CVE-2013-3350
Description
Adobe ColdFusion 10 before Update 11 allows remote attackers to call ColdFusion Components (CFC) public methods via WebSockets.
Affected products
7cpe:2.3:a:adobe:coldfusion:10.0:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:adobe:coldfusion:10.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:coldfusion:10.0:update1:*:*:*:*:*:*
- cpe:2.3:a:adobe:coldfusion:10.0:update2:*:*:*:*:*:*
- cpe:2.3:a:adobe:coldfusion:10.0:update3:*:*:*:*:*:*
- cpe:2.3:a:adobe:coldfusion:10.0:update4:*:*:*:*:*:*
- cpe:2.3:a:adobe:coldfusion:10.0:update8:*:*:*:*:*:*
- (no CPE)range: 10 before Update 11
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.