CVSS Base Vector:
Adobe ColdFusion is prone to multiple vulnerabilities.
Checks if a vulnerable version is present on the target host.
The following vulnerabilites exist:
- File extension blacklist bypass (CVE-2019-7838)
- Deserialization of untrusted data (CVE-2019-7840)
Successful exploitation could lead to arbitrary code execution.
Adobe ColdFusion version 11 prior to Update 19, version 2016 prior to Update 11 and version 2018 prior to Update 4.
Update to version 11 Update 19, version 2016 Update 11 or version 2018 Update 4 respectively.
Web application abuses
Find and Fix this Vulnerability:
Mageni can help you to find out if you have this or more vulnerabilities exposing you to hackers, ransomware and malware: Download Mageni's Free Edition
NVD CVE ID: