Uncontrolled Resource Consumption Vulnerability in Adobe ColdFusion
CVE-2026-27308
2.4LOW
What is CVE-2026-27308?
Adobe ColdFusion versions 2023.18, 2025.6, and earlier versions are affected by an Uncontrolled Resource Consumption vulnerability. This flaw can be exploited by high-privileged attackers to exhaust system resources, potentially leading to a denial-of-service condition that significantly degrades application performance. Notably, this vulnerability allows for exploitation without requiring user interaction, making it a notable concern for users of these versions.
Affected Version(s)
ColdFusion 0 <= 2025.6