← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-29298 — Actively Exploited: ColdFusion (Adobe)

Adobe ColdFusion contains an improper access control vulnerability that allows for a security feature bypass.

CVE IDCVE-2023-29298
VendorAdobe
ProductColdFusion
Vulnerability nameAdobe ColdFusion Improper Access Control Vulnerability
Date added2023-07-20
Remediation due2023-08-10
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionAdobe ColdFusion contains an improper access control vulnerability that allows for a security feature bypass.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →