Lucene search
K

4 matches found

NVD
NVD
added yesterday6 views

CVE-2026-48313

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could lead to arbitrary file system read and limited write access. An attacker could exploit this vulnerability to access sensitive...

9.3CVSS
Exploits0References1
NVD
NVD
added yesterday6 views

CVE-2026-48281

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

10CVSS
Exploits0References1
CVE
CVE
added yesterday9 views

CVE-2026-48282

CVE-2026-48282 affects ColdFusion versions 2025.9, 2023.20 and earlier. It is tied to an improper limitation of a pathname to a restricted directory (path traversal) that could lead to arbitrary code execution in the context of the current user. Exploitation does not require user interaction and ...

10CVSS6.4AI score
Exploits0References1Affected Software1
CVE
CVE
added yesterday8 views

CVE-2026-48283

CVE-2026-48283 affects ColdFusion versions 2025.9, 2023.20 and earlier. The vulnerability is an Unrestricted Upload of File with Dangerous Type (CWE-434) that can lead to arbitrary code execution in the context of the current user. Exploitation requires no user interaction and is network‑visible;...

10CVSS6.4AI score
Exploits0References1Affected Software1
Rows per page
Query Builder