CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-27282

ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access. Exploitation of this issue requires user interaction.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.5%

CVSS Severity

CVSS v3 Score 7.5

References

https://helpx.adobe.com/security/products/coldfusion/apsb26-38.html

Products affected by CVE-2026-27282

Adobe » Coldfusion » Version: 2023

cpe:2.3:a:adobe:coldfusion:2023
Adobe » Coldfusion » Version: 2025

cpe:2.3:a:adobe:coldfusion:2025

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-27282

Products

Pricing

Contact Us