Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic
ID: d886ebab-447d-50bd-85cf-9085dada2493
STIX ID: report--d886ebab-447d-50bd-85cf-9085dada2493
Feed Name: Security Affairs
Threat Score
Adobe has released security updates for ColdFusion and Campaign Classic that fix multiple critical vulnerabilities — including several CVSS 10.0 issues (remote code execution via file upload, input validation flaws, and path traversal) and high-severity path traversal and privilege-escalation bugs — and urges customers to apply ColdFusion 2023 Update 21 / 2025 Update 10 and Campaign Classic build 9397; Adobe reports no evidence of active exploitation.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
