VYPR
Unrated severityNVD Advisory· Published Jul 17, 2020· Updated May 5, 2025

CVE-2020-9672

CVE-2020-9672

Description

Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.

Affected products

3
  • Range: 2016 update <=15, 2018 update <=9
  • Adobe Inc./ColdFusion 2016cpe-rescue2 versions
    update 15 and earlier versions+ 1 more
    • (no CPE)range: update 15 and earlier versions
    • (no CPE)range: update 9 and earlier versions

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.