Security Advisory

CVE-2023-26361

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-23 00:00:00

Last updated 2025-03-05 19:22:22

Assigner adobe

State PUBLISHED

Description

Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) are affected by an Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) vulnerability that could result in Arbitrary file system read. Exploitation of this issue does not require user interaction, but does require administrator privileges.

← Browse all CVEs View on cve.org ↗