Adobe

Coldfusion

208 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2018-15963

  • EPSS 5.21%
  • Veröffentlicht 25.09.2018 13:29:01
  • Zuletzt bearbeitet 06.05.2025 15:15:54

Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a security bypass vulnerability. Successful exploitation could lead to arbitrary folder creation.

7.5

CVE-2018-15964

  • EPSS 8.63%
  • Veröffentlicht 25.09.2018 13:29:01
  • Zuletzt bearbeitet 06.05.2025 15:15:54

Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a use of a component with a known vulnerability vulnerability. Successful exploitation could lead to information disclosure.

7.8

CVE-2018-4938

  • EPSS 0.2%
  • Veröffentlicht 19.05.2018 17:29:01
  • Zuletzt bearbeitet 06.05.2025 15:15:56

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Insecure Library Loading vulnerability. Successful exploitation could lead to local privilege escalation.

10

CVE-2018-4939

Warnung
  • EPSS 50.5%
  • Veröffentlicht 19.05.2018 17:29:01
  • Zuletzt bearbeitet 23.10.2025 11:12:36

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Deserialization of Untrusted Data vulnerability. Successful exploitation could lead to arbitrary code execution.

6.1

CVE-2018-4940

  • EPSS 1.15%
  • Veröffentlicht 19.05.2018 17:29:01
  • Zuletzt bearbeitet 21.11.2024 04:07:45

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.

6.1

CVE-2018-4941

  • EPSS 1.15%
  • Veröffentlicht 19.05.2018 17:29:01
  • Zuletzt bearbeitet 21.11.2024 04:07:45

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.

7.5

CVE-2018-4942

  • EPSS 0.86%
  • Veröffentlicht 19.05.2018 17:29:01
  • Zuletzt bearbeitet 06.05.2025 15:15:56

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Unsafe XML External Entity Processing vulnerability. Successful exploitation could lead to information disclosure.

9.8

CVE-2017-11283

  • EPSS 23.86%
  • Veröffentlicht 01.12.2017 08:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.

9.8

CVE-2017-11284

  • EPSS 23.86%
  • Veröffentlicht 01.12.2017 08:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.

6.1

CVE-2017-11285

  • EPSS 1.03%
  • Veröffentlicht 01.12.2017 08:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Adobe ColdFusion has a cross-site scripting (XSS) vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.