Adobe

Coldfusion

201 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2023-26359

Warnung
  • EPSS 86.79%
  • Veröffentlicht 23.03.2023 20:15:15
  • Zuletzt bearbeitet 23.10.2025 11:12:54

Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of...

9.8

CVE-2023-26360

Warnung Exploit
  • EPSS 94.33%
  • Veröffentlicht 23.03.2023 20:15:15
  • Zuletzt bearbeitet 23.10.2025 11:12:47

Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) are affected by an Improper Access Control vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this iss...

4.9

CVE-2023-26361

  • EPSS 32.13%
  • Veröffentlicht 23.03.2023 20:15:15
  • Zuletzt bearbeitet 21.11.2024 07:51:12

Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in Arbitrary file system read. Ex...

7.5

CVE-2022-42340

  • EPSS 3.02%
  • Veröffentlicht 14.10.2022 20:15:17
  • Zuletzt bearbeitet 21.11.2024 07:24:47

Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary file system read. Exploitation of this issue does not require user interaction.

7.5

CVE-2022-42341

  • EPSS 1.58%
  • Veröffentlicht 14.10.2022 20:15:17
  • Zuletzt bearbeitet 21.11.2024 07:24:47

Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could result in arbitrary file system read. Exploitation of this issue do...

7.2

CVE-2022-38421

  • EPSS 5.06%
  • Veröffentlicht 14.10.2022 20:15:13
  • Zuletzt bearbeitet 21.11.2024 07:16:26

Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in arbitrary code execution in the context ...

7.5

CVE-2022-38422

  • EPSS 3.46%
  • Veröffentlicht 14.10.2022 20:15:13
  • Zuletzt bearbeitet 21.11.2024 07:16:26

Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in information disclosure. Exploitation of ...

4.9

CVE-2022-38423

  • EPSS 1.31%
  • Veröffentlicht 14.10.2022 20:15:13
  • Zuletzt bearbeitet 21.11.2024 07:16:26

Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in information disclosure. Exploitation of ...

7.2

CVE-2022-38424

  • EPSS 3.84%
  • Veröffentlicht 14.10.2022 20:15:13
  • Zuletzt bearbeitet 21.11.2024 07:16:26

Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in arbitrary file system write. Exploitatio...

9.8

CVE-2022-35710

  • EPSS 21.23%
  • Veröffentlicht 14.10.2022 20:15:12
  • Zuletzt bearbeitet 21.11.2024 07:11:31

Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does...