CVE-2019-8073
published 2019-09-27CVE-2019-8073: ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Command Injection via Vulnerable component vulnerability. Successful…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Command Injection via Vulnerable component vulnerability. Successful exploitation could lead to Arbitrary code execution in the context of the current user.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | cold_fusion | — | — |
| adobe | cold_fusion | — | — |
| adobe | coldfusion | — | — |
| adobe | coldfusion | — | — |