Known Vulnerabilities for Coldfusion by Adobe
Listed below are 10 of the newest known vulnerabilities associated with "Coldfusion" by "Adobe".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-40699 | ColdFusion version 2021 update 1 (and earlier) and versions 2018.10 (and earlier) are impacted by an improper access control ... | 7.4 - HIGH | 2023-09-07 | 2023-09-12 |
| CVE-2021-40698 | ColdFusion version 2021 update 1 (and earlier) and versions 2018.10 (and earlier) are impacted by an Use of Inherently Danger... | 7.4 - HIGH | 2023-09-07 | 2023-11-07 |
| CVE-2021-21087 | Adobe Coldfusion versions 2016 (update 16 and earlier), 2018 (update 10 and earlier) and 2021.0.0.323925 are affected by an I... | 5.4 - MEDIUM | 2021-04-15 | 2023-11-07 |
| CVE-2020-9673 | Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-ord... | 7.8 - HIGH | 2020-07-17 | 2020-09-04 |
| CVE-2020-9672 | Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-ord... | 7.8 - HIGH | 2020-07-17 | 2020-09-04 |
| CVE-2020-3796 | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an improper access control vulnerability. Successful exploitati... | 6.5 - MEDIUM | 2020-06-26 | 2021-07-21 |
| CVE-2020-3794 | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a file inclusion vulnerability. Successful exploitation could l... | 9.8 - CRITICAL | 2020-03-25 | 2021-07-21 |
| CVE-2020-3768 | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a dll search-order hijacking vulnerability. Successful exploita... | 7.8 - HIGH | 2020-06-26 | 2020-09-04 |
| CVE-2020-3767 | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an insufficient input validation vulnerability. Successful expl... | 6.5 - MEDIUM | 2020-06-26 | 2020-09-04 |
| CVE-2020-3761 | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a remote file read vulnerability. Successful exploitation could... | 7.5 - HIGH | 2020-03-25 | 2021-07-21 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Adobe | Coldfusion | 9.0.2 | All | All | All |
| Application | Adobe | Coldfusion | 9.0.1 | All | All | All |
| Application | Adobe | Coldfusion | 9.0 | All | All | All |
| Application | Adobe | Coldfusion | 8.0.1 | All | All | All |
| Application | Adobe | Coldfusion | 8.0 | All | All | All |
| Application | Adobe | Coldfusion | 7.2 | unknown | mx | All |
| Application | Adobe | Coldfusion | 7.0.2 | All | All | All |
| Application | Adobe | Coldfusion | 7.0.1 | All | All | All |
| Application | Adobe | Coldfusion | 7.0 | All | All | All |
| Application | Adobe | Coldfusion | 6.1 | All | All | All |
| Application | Adobe | Coldfusion | 6.0 | All | All | All |
| Application | Adobe | Coldfusion | 2018.0.0.310739 | All | All | All |
| Application | Adobe | Coldfusion | 2018.0.0 | All | All | All |
| Application | Adobe | Coldfusion | 2018 | - | All | All |
| Application | Adobe | Coldfusion | 2018 | update_1 | All | All |
| Application | Adobe | Coldfusion | 2018 | update_2 | All | All |
| Application | Adobe | Coldfusion | 2018 | update_3 | All | All |
| Application | Adobe | Coldfusion | 2018 | update_4 | All | All |
| Application | Adobe | Coldfusion | 2018 | update_5 | All | All |
| Application | Adobe | Coldfusion | 2018 | update_6 | All | All |