{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T20:56:43.488","vulnerabilities":[{"cve":{"id":"CVE-2022-38419","sourceIdentifier":"psirt@adobe.com","published":"2022-10-14T20:15:12.683","lastModified":"2024-11-21T07:16:26.343","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could result in arbitrary file system read. Exploitation of this issue does not require user interaction."},{"lang":"es","value":"Adobe ColdFusion versiones Update 14 (y anteriores) y Update 4 (y anteriores) se ven afectadas por una vulnerabilidad de Restricción Inapropiada de tipo XML External Entity Reference (\"XXE\") que podría resultar en una lectura arbitraria del sistema de archivos. No es requerida una interacción del usuario para la explotación de este problema"}],"metrics":{"cvssMetricV31":[{"source":"psirt@adobe.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@adobe.com","type":"Secondary","description":[{"lang":"en","value":"CWE-611"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:-:*:*:*:*:*:*","matchCriteriaId":"3B54B2B0-B1E1-4B4E-A529-D0BD3B5DEEF3"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update1:*:*:*:*:*:*","matchCriteriaId":"EDB126BF-E09D-4E58-A39F-1190407D1CAB"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update10:*:*:*:*:*:*","matchCriteriaId":"8DDD85DF-69A0-476F-8365-CD67C75CF0CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update11:*:*:*:*:*:*","matchCriteriaId":"23F63675-7817-4AF0-A7DB-5E35EDABF04E"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update12:*:*:*:*:*:*","matchCriteriaId":"3E3BF53E-2C0D-4F79-8B62-4C2A50CB5F52"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update13:*:*:*:*:*:*","matchCriteriaId":"C26BF72C-E991-4170-B68B-09B20B6C0679"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update14:*:*:*:*:*:*","matchCriteriaId":"25B4B4F2-318F-4046-ADE5-E9DD64F83FD9"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update2:*:*:*:*:*:*","matchCriteriaId":"59649177-81EE-43C3-BFA5-E56E65B486DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update3:*:*:*:*:*:*","matchCriteriaId":"453B96ED-738A-4642-B461-C5216CF45CA3"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update4:*:*:*:*:*:*","matchCriteriaId":"58D32489-627B-4E49-9329-8A3B8F8E4903"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update5:*:*:*:*:*:*","matchCriteriaId":"6D5860E1-D293-48FE-9796-058B78B2D571"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update6:*:*:*:*:*:*","matchCriteriaId":"9F9336CC-E38F-4BCB-83CD-805EC7FEF806"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update7:*:*:*:*:*:*","matchCriteriaId":"97964507-047A-4CC8-8D2B-0EA0C7F9BD50"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update8:*:*:*:*:*:*","matchCriteriaId":"82208628-F32A-4380-9B0F-DC8507E7701D"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update9:*:*:*:*:*:*","matchCriteriaId":"1563CE5E-A4F7-40A4-A050-BB96E332D8DD"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2021:-:*:*:*:*:*:*","matchCriteriaId":"7A94B406-C011-4673-8C2B-0DD94D46CC4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2021:update1:*:*:*:*:*:*","matchCriteriaId":"AFD05E3A-10F9-4C75-9710-BA46B66FF6E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2021:update2:*:*:*:*:*:*","matchCriteriaId":"D57C8681-AC68-47DF-A61E-B5C4B4A47663"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2021:update3:*:*:*:*:*:*","matchCriteriaId":"75608383-B727-48D6-8FFA-D552A338A562"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2021:update4:*:*:*:*:*:*","matchCriteriaId":"7773DB68-414A-4BA9-960F-52471A784379"}]}]}],"references":[{"url":"https://helpx.adobe.com/security/products/coldfusion/apsb22-44.html","source":"psirt@adobe.com","tags":["Patch","Vendor Advisory"]},{"url":"https://helpx.adobe.com/security/products/coldfusion/apsb22-44.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}