High severity7.5NVD Advisory· Published May 19, 2018· Updated Jun 17, 2026
CVE-2018-4942
CVE-2018-4942
Description
Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Unsafe XML External Entity Processing vulnerability. Successful exploitation could lead to information disclosure.
Affected products
1- Range: <= Update 5 (ColdFusion 2016), <= Update 13 (ColdFusion 11)
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/103718nvdThird Party AdvisoryVDB Entry
- helpx.adobe.com/security/products/coldfusion/apsb18-14.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.