Vulnerabilities > Adobe > High

DATE CVE VULNERABILITY TITLE RISK
2025-04-08 CVE-2025-24446 Improper Input Validation vulnerability in Adobe Coldfusion 2021/2023/2025
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-20
7.8
7.8
2025-04-08 CVE-2025-24447 Deserialization of Untrusted Data vulnerability in Adobe Coldfusion 2021/2023/2025
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-502
7.8
7.8
2025-04-08 CVE-2025-30282 Improper Authentication vulnerability in Adobe Coldfusion 2021/2023/2025
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Authentication vulnerability that could result in arbitrary code execution in the context of the current user.
network
low complexity
adobe CWE-287
8.8
8.8
2025-04-08 CVE-2025-30284 Deserialization of Untrusted Data vulnerability in Adobe Coldfusion 2021/2023/2025
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-502
7.8
7.8
2025-04-08 CVE-2025-30285 Deserialization of Untrusted Data vulnerability in Adobe Coldfusion 2021/2023/2025
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-502
7.8
7.8
2025-04-08 CVE-2025-30287 Improper Authentication vulnerability in Adobe Coldfusion 2021/2023/2025
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Authentication vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-287
7.8
7.8
2025-04-08 CVE-2025-30291 Information Exposure vulnerability in Adobe Coldfusion 2021/2023/2025
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Information Exposure vulnerability that could result in a security feature bypass.
network
low complexity
adobe CWE-200
7.5
7.5
2025-04-08 CVE-2025-30293 Improper Input Validation vulnerability in Adobe Coldfusion 2021/2023/2025
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass.
local
low complexity
adobe CWE-20
7.1
7.1
2025-04-08 CVE-2025-30294 Improper Input Validation vulnerability in Adobe Coldfusion 2021/2023/2025
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass.
local
low complexity
adobe CWE-20
7.1
7.1
2025-04-08 CVE-2025-30295 Heap-based Buffer Overflow vulnerability in Adobe Framemaker
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-122
7.8
7.8