CVE-2014-9166 | Vulnerability Database | Aqua Security

Adobe ColdFusion 10 before Update 15 and 11 before Update 3 allows attackers to cause a denial of service (resource consumption) via unspecified vectors.

Affected Software

Name	Vendor	Start Version	End Version
Coldfusion	Adobe	10.0 (including)	10.0 (including)
Coldfusion	Adobe	10.0-update1 (including)	10.0-update1 (including)
Coldfusion	Adobe	10.0-update10 (including)	10.0-update10 (including)
Coldfusion	Adobe	10.0-update11 (including)	10.0-update11 (including)
Coldfusion	Adobe	10.0-update12 (including)	10.0-update12 (including)
Coldfusion	Adobe	10.0-update13 (including)	10.0-update13 (including)
Coldfusion	Adobe	10.0-update14 (including)	10.0-update14 (including)
Coldfusion	Adobe	10.0-update2 (including)	10.0-update2 (including)
Coldfusion	Adobe	10.0-update3 (including)	10.0-update3 (including)
Coldfusion	Adobe	10.0-update4 (including)	10.0-update4 (including)
Coldfusion	Adobe	10.0-update5 (including)	10.0-update5 (including)
Coldfusion	Adobe	10.0-update6 (including)	10.0-update6 (including)
Coldfusion	Adobe	10.0-update7 (including)	10.0-update7 (including)
Coldfusion	Adobe	10.0-update8 (including)	10.0-update8 (including)
Coldfusion	Adobe	10.0-update9 (including)	10.0-update9 (including)
Coldfusion	Adobe	11.0 (including)	11.0 (including)
Coldfusion	Adobe	11.0-update1 (including)	11.0-update1 (including)
Coldfusion	Adobe	11.0-update2 (including)	11.0-update2 (including)

References

http://helpx.adobe.com/security/products/coldfusion/apsb14-29.html

NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-9166
CWE	https://cwe.mitre.org/data/definitions/.html