216.73.217.86

CVE-2026-47930

· Published 09/06/2026 21:17 · Modified 10/06/2026 18:35

Labels: CVE-2026-47930 2026-06-09CVE-2026-47930CWE-20[email protected]

Essential information

Published
09/06/2026 21:17
Modified
10/06/2026 18:35
Author
Creator
CVSS
8.1 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

CVSS metrics

Description

ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized read and write access. Exploitation of this issue does not require user interaction.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023.19:*:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2025.8:*:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:*:*:*:*:*:*:*:*

References