GCVE - cpe:2.3:a:n/a:adobe_coldfusion_coldfusion_update_5_and_earlier_versions,_coldfusion_11_update_13_and_earlier

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:adobe_coldfusion_coldfusion_update_5_and_earlier_versions,_coldfusion_11_update_13_and_earlier_versions:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Adobe Coldfusion Coldfusion Update 5 And Earlier Versions, Coldfusion 11 Update 13 And Earlier Versions (`d7acb2bb-60fa-5e57-95ce-888e6ea4e570`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-4942`	vulnerable	2026-06-08 05:11:49.992480	Details available Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Unsafe XML External Entity Processing vulnerability. Successful exploitation could lead to information disclosure. Published: 2018-05-19T17:00:00.000Z Updated: 2025-05-06T14:50:12.575Z Open on db.gcve.eu Reference links https://helpx.adobe.com/security/products/coldfusion/apsb18-14.html http://www.securityfocus.com/bid/103718	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-4941`	vulnerable	2026-06-08 05:11:49.991048	Details available Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure. Published: 2018-05-19T17:00:00.000Z Updated: 2024-08-05T05:18:27.066Z Open on db.gcve.eu Reference links https://helpx.adobe.com/security/products/coldfusion/apsb18-14.html http://www.securityfocus.com/bid/103718	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-4940`	vulnerable	2026-06-08 05:11:49.990011	Details available Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure. Published: 2018-05-19T17:00:00.000Z Updated: 2024-08-05T05:18:27.019Z Open on db.gcve.eu Reference links https://helpx.adobe.com/security/products/coldfusion/apsb18-14.html http://www.securityfocus.com/bid/103718	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-4939`	vulnerable	2026-06-08 05:11:49.989063	Details available Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Deserialization of Untrusted Data vulnerability. Successful exploitation could lead to arbitrary code execution. Published: 2018-05-19T17:00:00.000Z Updated: 2025-10-21T23:45:51.042Z Open on db.gcve.eu Reference links https://helpx.adobe.com/security/products/coldfusion/apsb18-14.html http://www.securityfocus.com/bid/103718	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-4938`	vulnerable	2026-06-08 05:11:49.970555	Details available Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Insecure Library Loading vulnerability. Successful exploitation could lead to local privilege escalation. Published: 2018-05-19T17:00:00.000Z Updated: 2025-05-06T14:51:38.432Z Open on db.gcve.eu Reference links https://helpx.adobe.com/security/products/coldfusion/apsb18-14.html http://www.securityfocus.com/bid/103718	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Adobe Coldfusion Coldfusion Update 5 And Earlier Versions, Coldfusion 11 Update 13 And Earlier Versions

PURL mappings

Vulnerability references

Contribute