CVE-2019-8072

Summary

ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Security bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.

Affected Software

VendorProductVersion RangeStatus
AdobeCold FusionColdFusion 2018- update 4 and earlieraffected
AdobeCold FusionColdFusion 2016- update 11 and earlieraffected

Weaknesses

  • Security bypass

ADP Enrichment

CVE Program Container

Additional References

References