Lucene search
K

6 matches found

CVE
CVE
added 2026/02/21 9:2 p.m.13 views

CVE-2026-2887

CVE-2026-2887 affects aardappel lobster up to 2025.4. The vulnerability is in the function lobster::TypeName within lib dev/src/lobster/idents.h, causing uncontrolled recursion. Exploitation is local and publicly disclosed. A fix is available in version 2026.1; patch name 8ba49f98ccfc9734ef352146...

5.5CVSS5AI score0.0018EPSS
Exploits1References9Affected Software1
NVD
NVD
added 2025/12/10 12:16 a.m.5 views

CVE-2025-64897

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Access Control vulnerability. A low privileged attacker could leverage this vulnerability to bypass security measures and gain limited unauthorized write access potentially resulting in denial of service...

5.6CVSS0.00111EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.4 views

Adobe ColdFusion 访问控制错误漏洞

Adobe ColdFusion is a suite of rapid application development platforms from the American company Audobee Adobe. The platform includes an integrated development environment and a scripting language. An Access Control Error vulnerability exists in Adobe ColdFusion versions 2025.4, 2023.16, 2021.22,...

9.1CVSS6.6AI score0.01067EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/09 11:41 p.m.2 views

CVE-2025-61821 ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Restriction of XML External Entity Reference 'XXE' vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and data on the server. Explo...

6.8CVSS6AI score0.00468EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 11:41 p.m.28 views

CVE-2025-61823 ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Restriction of XML External Entity Reference 'XXE' vulnerability that could lead to arbitrary file system read. A high privileged attacker could exploit this vulnerability to access sensitive files and data on th...

6.2CVSS0.00429EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.5 views

PT-2025-50282

Name of the Vulnerable Software and Affected Versions ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier Description An improper input validation issue exists in ColdFusion that could allow an attacker to bypass security measures and gain unauthorized read and write access. Exploitation of...

9.1CVSS6.3AI score0.00586EPSS
Exploits0References10
Rows per page
Query Builder