logo

Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic

ID: d886ebab-447d-50bd-85cf-9085dada2493

STIX ID: report--d886ebab-447d-50bd-85cf-9085dada2493

Feed Name: Security Affairs

Threat Score
70/100

Date Published: 2026-07-02

Date Updated: 2026-07-02

Author: Pierluigi Paganini

...
...

Adobe has released security updates for ColdFusion and Campaign Classic that fix multiple critical vulnerabilities — including several CVSS 10.0 issues (remote code execution via file upload, input validation flaws, and path traversal) and high-severity path traversal and privilege-escalation bugs — and urges customers to apply ColdFusion 2023 Update 21 / 2025 Update 10 and Campaign Classic build 9397; Adobe reports no evidence of active exploitation.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.