1. Home
  2. Mapping Frameworks
  3. CVE Home
  4. ColdFusion

CVE CVE-2018-15961 Mappings

Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have an unrestricted file upload vulnerability. Successful exploitation could lead to arbitrary code execution.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2018-15961 ColdFusion uncategorized T1190 Exploit Public-Facing Application
CVE-2018-15961 ColdFusion uncategorized T1505.003 Web Shell
CVE-2018-15961 ColdFusion uncategorized T1491 Defacement