Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion 2021 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-35711
Adobe ColdFusion versions Update 14 (and previous versions) and Update 4 (and previous versions) are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not requir...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
9.8
CVSSv3
CVE-2022-35712
Adobe ColdFusion versions Update 14 (and previous versions) and Update 4 (and previous versions) are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not requir...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
8.6
CVSSv3
CVE-2023-26360
Adobe ColdFusion versions 2018 Update 15 (and previous versions) and 2021 Update 5 (and previous versions) are affected by an Improper Access Control vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does no...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
2 Metasploit modules
2 Github repositories
1 Article
8.2
CVSSv3
CVE-2024-20767
ColdFusion versions 2023.6, 2021.12 and previous versions are affected by an Improper Access Control vulnerability that could lead to arbitrary file system read. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access to sensitive fi...
1 Metasploit module
4 Github repositories
7.8
CVSSv3
CVE-2020-10145
The Adobe ColdFusion installer fails to set a secure access-control list (ACL) on the default installation directory, such as C:\ColdFusion2021\. By default, unprivileged users can create files in this directory structure, which creates a privilege-escalation vulnerability.
Adobe Coldfusion 2018
Adobe Coldfusion 2016
Adobe Coldfusion 2021
7.5
CVSSv3
CVE-2023-26347
Adobe ColdFusion versions 2023.5 (and previous versions) and 2021.11 (and previous versions) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An unauthenticated attacker could leverage this vulnerability to access the admini...
Adobe Coldfusion 2021
Adobe Coldfusion 2023
Adobe Coldfusion
7.5
CVSSv3
CVE-2023-38205
Adobe ColdFusion versions 2018u18 (and previous versions), 2021u8 (and previous versions) and 2023u2 (and previous versions) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to a...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion 2023
7.5
CVSSv3
CVE-2023-29298
Adobe ColdFusion versions 2018u16 (and previous versions), 2021u6 (and previous versions) and 2023.0.0.330468 (and previous versions) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerabi...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
7.5
CVSSv3
CVE-2023-29301
Adobe ColdFusion versions 2018u16 (and previous versions), 2021u6 (and previous versions) and 2023.0.0.330468 (and previous versions) are affected by an Improper Restriction of Excessive Authentication Attempts vulnerability that could result in a Security feature bypass. An atta...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
7.5
CVSSv3
CVE-2022-38419
Adobe ColdFusion versions Update 14 (and previous versions) and Update 4 (and previous versions) are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could result in arbitrary file system read. Exploitation of this issue do...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »