CVE-2020-3768

Summary

ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.

Affected Software

VendorProductVersion RangeStatus
AdobeColdFusionColdFusion 2016, and ColdFusion 2018 versionsaffected

Weaknesses

  • DLL search-order hijacking

ADP Enrichment

CVE Program Container

Additional References

References