What is CVE-2018-15963?

CVE-2018-15963 is a security bypass vulnerability in Adobe ColdFusion.

What is the severity of CVE-2018-15963?

CVE-2018-15963 has a severity rating of 5.3 (medium).

What is the potential impact of CVE-2018-15963?

Successful exploitation of CVE-2018-15963 could lead to arbitrary folder creation.

How can I mitigate the security bypass vulnerability in Adobe ColdFusion?

To mitigate the security bypass vulnerability, it is recommended to apply the necessary security updates provided by Adobe.

Vulnerability/
CVE-2018-15963

medium

5.3

25/9/2018

5/8/2024

CVE-2018-15963

First published: Tue Sep 25 2018(Updated: )

Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a security bypass vulnerability. Successful exploitation could lead to arbitrary folder creation.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe ColdFusion	=11.0
Adobe ColdFusion	=11.0-update1
Adobe ColdFusion	=11.0-update10
Adobe ColdFusion	=11.0-update11
Adobe ColdFusion	=11.0-update12
Adobe ColdFusion	=11.0-update13
Adobe ColdFusion	=11.0-update14
Adobe ColdFusion	=11.0-update2
Adobe ColdFusion	=11.0-update3
Adobe ColdFusion	=11.0-update4
Adobe ColdFusion	=11.0-update5
Adobe ColdFusion	=11.0-update6
Adobe ColdFusion	=11.0-update7
Adobe ColdFusion	=11.0-update8
Adobe ColdFusion	=11.0-update9
Adobe ColdFusion	=2016
Adobe ColdFusion	=2016-update1
Adobe ColdFusion	=2016-update2
Adobe ColdFusion	=2016-update3
Adobe ColdFusion	=2016-update4
Adobe ColdFusion	=2016-update5
Adobe ColdFusion	=2016-update6
Adobe ColdFusion	=2018

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-15963?
CVE-2018-15963 is a security bypass vulnerability in Adobe ColdFusion.
What versions of Adobe ColdFusion are affected by CVE-2018-15963?
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier are affected by CVE-2018-15963.
What is the severity of CVE-2018-15963?
CVE-2018-15963 has a severity rating of 5.3 (medium).
What is the potential impact of CVE-2018-15963?
Successful exploitation of CVE-2018-15963 could lead to arbitrary folder creation.
How can I mitigate the security bypass vulnerability in Adobe ColdFusion?
To mitigate the security bypass vulnerability, it is recommended to apply the necessary security updates provided by Adobe.

collector/nvd-index
agent/references
agent/severity
agent/author
agent/type
agent/description
agent/event
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/adobe
canonical/adobe coldfusion
version/adobe coldfusion/11.0
version/adobe coldfusion/11.0-update1
version/adobe coldfusion/11.0-update10
version/adobe coldfusion/11.0-update11
version/adobe coldfusion/11.0-update12
version/adobe coldfusion/11.0-update13
version/adobe coldfusion/11.0-update14
version/adobe coldfusion/11.0-update2
version/adobe coldfusion/11.0-update3
version/adobe coldfusion/11.0-update4
version/adobe coldfusion/11.0-update5
version/adobe coldfusion/11.0-update6
version/adobe coldfusion/11.0-update7
version/adobe coldfusion/11.0-update8
version/adobe coldfusion/11.0-update9
version/adobe coldfusion/2016
version/adobe coldfusion/2016-update1
version/adobe coldfusion/2016-update2
version/adobe coldfusion/2016-update3
version/adobe coldfusion/2016-update4
version/adobe coldfusion/2016-update5
version/adobe coldfusion/2016-update6
version/adobe coldfusion/2018

CVE-2018-15963

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-15963?

What versions of Adobe ColdFusion are affected by CVE-2018-15963?

What is the severity of CVE-2018-15963?

What is the potential impact of CVE-2018-15963?

How can I mitigate the security bypass vulnerability in Adobe ColdFusion?

Company

Resources

Contact