Coldfusion Security Vulnerabilities and Issues — Coldfusion CVE List

Lucene search

AdobeColdfusion

3 matches found

CVE•added 2019/05/24 7:29 p.m.•66 views

CVE-2019-7091

ColdFusion versions Update 1 and earlier, Update 7 and earlier, and Update 15 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.

10CVSS9.6AI score0.63074EPSS

CVE•added 2019/05/24 7:29 p.m.•66 views

CVE-2019-7092

ColdFusion versions Update 1 and earlier, Update 7 and earlier, and Update 15 and earlier have a cross site scripting vulnerability. Successful exploitation could lead to information disclosure .

6.1CVSS6.9AI score0.0145EPSS

CVE•added 2019/05/24 6:29 p.m.•64 views

CVE-2019-7816

ColdFusion versions Update 2 and earlier, Update 9 and earlier, and Update 17 and earlier have a file upload restriction bypass vulnerability. Successful exploitation could lead to arbitrary code execution.

10CVSS9.6AI score0.04815EPSS