Coldfusion Security Vulnerabilities and Issues — Coldfusion CVE List

Lucene search

AdobeColdfusion

3 matches found

CVE•added 2019/09/27 4:15 p.m.•67 views

CVE-2019-8073

ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Command Injection via Vulnerable component vulnerability. Successful exploitation could lead to Arbitrary code execution in the context of the current user.

10CVSS9.6AI score0.14776EPSS

CVE•added 2019/09/27 4:15 p.m.•51 views

CVE-2019-8072

ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Security bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.

7.5CVSS7.6AI score0.0446EPSS

CVE•added 2019/09/27 4:15 p.m.•50 views

CVE-2019-8074

ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Path Traversal vulnerability. Successful exploitation could lead to Access Control Bypass in the context of the current user.

10CVSS9.2AI score0.07732EPSS