CVE-2026-27307

Name of the Vulnerable Software and Affected Versions ColdFusion versions 2023.18 and earlier ColdFusion versions 2025.6 and earlier

Description An Uncontrolled Resource Consumption issue exists where a high-privileged attacker can exhaust system resources. This can lead to a denial-of-service condition, resulting in reduced application speed. Exploitation does not require user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.