HomePentest-Tools.com Logo

Adobe ColdFusion - Access Control Bypass CVE-2023-29298

Severity
CVSSv3 Score
7.5
Vulnerability description

An attacker is able to access every CFM and CFC endpoint within the ColdFusion Administrator path /CFIDE/, of which there are 437 CFM files and 96 CFC files in a ColdFusion 2021 Update 6 install.\n

Risk description

No risk description to display.

Recommendation

Apply the latest security patches or updates provided by Adobe to fix the access control bypass vulnerability.

Codename
Not available
Detectable with
Network Scanner
Scan engine
Nuclei
Exploitable with Sniper
No
CVE Published
Jul 12, 2023
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available