Critical severity9.8CISA KEVNVD Advisory· Published Sep 25, 2018· Updated Jun 17, 2026
CVE-2018-15961
CVE-2018-15961
Description
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have an unrestricted file upload vulnerability. Successful exploitation could lead to arbitrary code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2July 12 release (2018.0.0.310739), Update 6 and earlier, Update 14 and earlier+ 1 more
- (no CPE)range: July 12 release (2018.0.0.310739), Update 6 and earlier, Update 14 and earlier
- (no CPE)range: July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier versions
Patches
Vulnerability mechanics
References
5- www.exploit-db.com/exploits/45979/nvdExploitThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/105314nvdBroken LinkThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1041621nvdBroken LinkThird Party AdvisoryVDB Entry
- helpx.adobe.com/security/products/coldfusion/apsb18-33.htmlnvdVendor Advisory
- www.cisa.gov/known-exploited-vulnerabilities-catalognvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.