Incorrect Authorization Vulnerability in Adobe ColdFusion
CVE-2026-48327
9CRITICAL
What is CVE-2026-48327?
Adobe ColdFusion is impacted by an Incorrect Authorization vulnerability that allows attackers to execute arbitrary code within the context of the current user. Exploitation of this vulnerability does not necessitate any user interaction, posing a significant threat to system integrity. It is vital for users of ColdFusion to promptly address this issue to safeguard their applications from potential exploitation.
Affected Version(s)
ColdFusion 2023 0 <= 21
ColdFusion 2023 0 <= 21
ColdFusion 2025 0 <= 10