CVE-2026-48329
LOW
NVD
CVSS Score
2.7
Severity
LOW
Published
Jul 14, 2026
Vendor
unknown
Description
ColdFusion is affected by an Insufficient Session Expiration vulnerability that could result in a Security feature bypass. A high-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized write access. Exploitation of this issue does not require user interaction.