Unsafe XML External Entity Processing Vulnerability in Adobe ColdFusion: Risk of Information Disclosure

CVE-2018-4942 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Unsafe XML External Entity Processing vulnerability. Successful exploitation could lead to information disclosure.

Learn more about our External Network Penetration Testing.