PT-2026-58812 · Adobe · Coldfusion
Published
2026-07-14
·
Updated
2026-07-14
·
CVE-2026-48318
CVSS v3.1
9.9
Critical
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ColdFusion (affected versions not specified)
Description
ColdFusion contains a Path Traversal issue, which occurs when an application uses user-supplied input to construct a pathname that is intended to be within a restricted directory but can be manipulated to access files outside that directory. This flaw allows an attacker to perform arbitrary file system reads to access sensitive files and directories without requiring user interaction.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Coldfusion