CVE-2020-9672

Published: Jul 17, 2020

Modified: May 5, 2025

PUBLISHED

Description

Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.

Vendor	Product	Versions
Adobe	Adobe ColdFusion 2016	affected `update 15 and earlier versions`
Adobe	Adobe ColdFusion 2018	affected `update 9 and earlier versions`

References

https://helpx.adobe.com/security/products/coldfusion/apsb20-43.html

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-9672

Description

Affected Products

References