Known Vulnerabilities for ColdFusion by Adobe

Listed below are 10 of the newest known vulnerabilities associated with "ColdFusion" by "Adobe".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2023-26361	Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) are affected by an Improper Limitation...	4.9 - Medium	2023-03-23	2023-03-23
CVE-2023-26360	Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) are affected by an Improper Access Con...	8.6 - High	2023-03-23	2023-05-01
CVE-2023-26359	Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) are affected by a Deserialization of U...	9.8 - Critical	2023-03-23	2023-03-23
CVE-2021-21087	Adobe Coldfusion versions 2016 (update 16 and earlier), 2018 (update 10 and earlier) and 2021.0.0.323925 are affected by an I...	5.4 - MEDIUM	2021-04-15	2022-06-03
CVE-2020-10145	The Adobe ColdFusion installer fails to set a secure access-control list (ACL) on the default installation directory, such as...	7.8 - HIGH	2021-05-27	2022-08-05
CVE-2020-9673	Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-ord...	7.8 - HIGH	2020-07-17	2020-09-04
CVE-2020-9672	Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-ord...	7.8 - HIGH	2020-07-17	2020-09-04
CVE-2020-3796	ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an improper access control vulnerability. Successful exploitati...	6.5 - MEDIUM	2020-06-26	2021-07-21
CVE-2020-3794	ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a file inclusion vulnerability. Successful exploitation could l...	9.8 - CRITICAL	2020-03-25	2021-07-21
CVE-2020-3768	ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a dll search-order hijacking vulnerability. Successful exploita...	7.8 - HIGH	2020-06-26	2020-09-04

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Adobe	Coldfusion	9.0.2	All	All	All
Application	Adobe	Coldfusion	9.0.1	All	All	All
Application	Adobe	Coldfusion	9.0	All	All	All
Application	Adobe	Coldfusion	8.0.1	All	All	All
Application	Adobe	Coldfusion	8.0	All	All	All
Application	Adobe	Coldfusion	7.2	unknown	mx	All
Application	Adobe	Coldfusion	7.0.2	All	All	All
Application	Adobe	Coldfusion	7.0.1	All	All	All
Application	Adobe	Coldfusion	7.0	All	All	All
Application	Adobe	Coldfusion	6.1	All	All	All
Application	Adobe	Coldfusion	6.0	All	All	All
Application	Adobe	Coldfusion	2018.0.0.310739	All	All	All
Application	Adobe	Coldfusion	2018.0.0	All	All	All
Application	Adobe	Coldfusion	2018	-	All	All
Application	Adobe	Coldfusion	2018	update_1	All	All
Application	Adobe	Coldfusion	2018	update_2	All	All
Application	Adobe	Coldfusion	2018	update_3	All	All
Application	Adobe	Coldfusion	2018	update_4	All	All
Application	Adobe	Coldfusion	2018	update_5	All	All
Application	Adobe	Coldfusion	2018	update_6	All	All

Results limited to 20 most recent known configurations

Adobe ColdFusion family

www.adobe.com/products/coldfusion

Adobe ColdFusion family Adobe ColdFusion Y W U offers you a single platform for building and deploying web and mobile applications.

www.adobe.com/products/coldfusion-family.html www.macromedia.com/software/coldfusion www.adobe.com/products/coldfusion-family.html www.adobe.com/coldfusion www.adobe.com/products/jrun labs.adobe.com/technologies/coldfusion10 www.adobe.com/products/jrun Adobe ColdFusion Software deployment Cloud computing Application software Mobile app development Computing platform Software release life cycle Web application Mobile app Docker (software) Microservices World Wide Web DevOps CI/CD Integrated development environment Multicloud Scalability Server (computing) Enterprise software Programming tool

ColdFusion Home - ColdFusion

coldfusion.adobe.com

ColdFusion Home - ColdFusion Adobe ColdFusion Know the latest in web trends, get free trials and join webinars

coldfusion.adobe.com/profile/webinar coldfusion.adobe.com/profile/discussions coldfusion.adobe.com/profile/tutorial coldfusion.adobe.com/category coldfusion.adobe.com/profile/certificate blogs.coldfusion.com coldfusion.adobe.com/profile/blogs coldfusion.adobe.com/coldfusion/240438.pdf Adobe ColdFusion Adobe Inc. Blog Web conferencing Cascading Style Sheets Share (P2P) Shareware Web development Less (stylesheet language) Bitly Email World Wide Web LinkedIn Web developer Application software Crash Course (YouTube) Object (computer science) JSON Microservices Twitter

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].

Known Vulnerabilities for ColdFusion by Adobe