← back
CVE-2017-11286

CVE-2017-11286

EPSS 8.5%
Adobe ColdFusion has an XML external entity (XXE) injection vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.
Affected products
n/a · Adobe ColdFusion Update 4 and earlier versions for ColdFusion 2016 release. Update 12 and earlier versions for ColdFusion 11.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://helpx.adobe.com/security/products/coldfusion/apsb17-30.htmlhttp://www.securityfocus.com/bid/100715http://www.securitytracker.com/id/1039321