What is the vulnerability ID of this Adobe ColdFusion vulnerability?

The vulnerability ID is CVE-2018-15957.

What is the severity of CVE-2018-15957?

The severity of CVE-2018-15957 is critical with a CVSS score of 9.8.

What is the impact of exploiting CVE-2018-15957?

Successful exploitation of CVE-2018-15957 could lead to arbitrary code execution.

How can I fix CVE-2018-15957?

To fix CVE-2018-15957, it is recommended to update to Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 7 or later.

Vulnerability/
CVE-2018-15957

critical

CWE

502

25/9/2018

5/8/2024

CVE-2018-15957

First published: Tue Sep 25 2018(Updated: )

Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe ColdFusion	=11.0
Adobe ColdFusion	=11.0-update1
Adobe ColdFusion	=11.0-update10
Adobe ColdFusion	=11.0-update11
Adobe ColdFusion	=11.0-update12
Adobe ColdFusion	=11.0-update13
Adobe ColdFusion	=11.0-update14
Adobe ColdFusion	=11.0-update2
Adobe ColdFusion	=11.0-update3
Adobe ColdFusion	=11.0-update4
Adobe ColdFusion	=11.0-update5
Adobe ColdFusion	=11.0-update6
Adobe ColdFusion	=11.0-update7
Adobe ColdFusion	=11.0-update8
Adobe ColdFusion	=11.0-update9
Adobe ColdFusion	=2016
Adobe ColdFusion	=2016-update1
Adobe ColdFusion	=2016-update2
Adobe ColdFusion	=2016-update3
Adobe ColdFusion	=2016-update4
Adobe ColdFusion	=2016-update5
Adobe ColdFusion	=2016-update6
Adobe ColdFusion	=2018

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID of this Adobe ColdFusion vulnerability?
The vulnerability ID is CVE-2018-15957.
What is the severity of CVE-2018-15957?
The severity of CVE-2018-15957 is critical with a CVSS score of 9.8.
Which versions of Adobe ColdFusion are affected by CVE-2018-15957?
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier are affected by CVE-2018-15957.
What is the impact of exploiting CVE-2018-15957?
Successful exploitation of CVE-2018-15957 could lead to arbitrary code execution.
How can I fix CVE-2018-15957?
To fix CVE-2018-15957, it is recommended to update to Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 7 or later.

collector/nvd-index
agent/severity
agent/references
agent/author
agent/event
agent/weakness
agent/type
agent/description
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/adobe
canonical/adobe coldfusion
version/adobe coldfusion/11.0
version/adobe coldfusion/11.0-update1
version/adobe coldfusion/11.0-update10
version/adobe coldfusion/11.0-update11
version/adobe coldfusion/11.0-update12
version/adobe coldfusion/11.0-update13
version/adobe coldfusion/11.0-update14
version/adobe coldfusion/11.0-update2
version/adobe coldfusion/11.0-update3
version/adobe coldfusion/11.0-update4
version/adobe coldfusion/11.0-update5
version/adobe coldfusion/11.0-update6
version/adobe coldfusion/11.0-update7
version/adobe coldfusion/11.0-update8
version/adobe coldfusion/11.0-update9
version/adobe coldfusion/2016
version/adobe coldfusion/2016-update1
version/adobe coldfusion/2016-update2
version/adobe coldfusion/2016-update3
version/adobe coldfusion/2016-update4
version/adobe coldfusion/2016-update5
version/adobe coldfusion/2016-update6
version/adobe coldfusion/2018

CVE-2018-15957

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID of this Adobe ColdFusion vulnerability?

What is the severity of CVE-2018-15957?

Which versions of Adobe ColdFusion are affected by CVE-2018-15957?

What is the impact of exploiting CVE-2018-15957?

How can I fix CVE-2018-15957?

Company

Resources

Contact