Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion 2016 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2019-7091
ColdFusion versions Update 1 and previous versions, Update 7 and previous versions, and Update 15 and previous versions have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe Coldfusion 11.0
Adobe Coldfusion 2018
Adobe Coldfusion 2016
4.3
CVSSv2
CVE-2019-7092
ColdFusion versions Update 1 and previous versions, Update 7 and previous versions, and Update 15 and previous versions have a cross site scripting vulnerability. Successful exploitation could lead to information disclosure .
Adobe Coldfusion 2016
Adobe Coldfusion 11.0
Adobe Coldfusion 2018
7.2
CVSSv2
CVE-2020-10145
The Adobe ColdFusion installer fails to set a secure access-control list (ACL) on the default installation directory, such as C:\ColdFusion2021\. By default, unprivileged users can create files in this directory structure, which creates a privilege-escalation vulnerability.
Adobe Coldfusion 2018
Adobe Coldfusion 2016
Adobe Coldfusion 2021
5
CVSSv2
CVE-2019-8072
ColdFusion 2018- update 4 and previous versions and ColdFusion 2016- update 11 and previous versions have a Security bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
1 Article
10
CVSSv2
CVE-2019-8073
ColdFusion 2018- update 4 and previous versions and ColdFusion 2016- update 11 and previous versions have a Command Injection via Vulnerable component vulnerability. Successful exploitation could lead to Arbitrary code execution in the context of the current user.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
1 Article
10
CVSSv2
CVE-2019-8074
ColdFusion 2018- update 4 and previous versions and ColdFusion 2016- update 11 and previous versions have a Path Traversal vulnerability. Successful exploitation could lead to Access Control Bypass in the context of the current user.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
1 Article
4.4
CVSSv2
CVE-2020-9672
Adobe ColdFusion 2016 update 15 and previous versions versions, and ColdFusion 2018 update 9 and previous versions versions have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
4.4
CVSSv2
CVE-2020-9673
Adobe ColdFusion 2016 update 15 and previous versions versions, and ColdFusion 2018 update 9 and previous versions versions have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
4.6
CVSSv2
CVE-2018-4938
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Insecure Library Loading vulnerability. Successful exploitation could lead to local privilege escalation.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
10
CVSSv2
CVE-2018-4939
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Deserialization of Untrusted Data vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »