Adobe ColdFusion Information Disclosure Vulnerability

Release Date: 24 Dec 2024 909 Views

RISK: High Risk

High Risk

TYPE: Clients - Productivity Products

TYPE: Productivity Products

A vulnerability was identified in Adobe ColdFusion. A remote attacker could exploit this vulnerability to trigger sensitive information disclosure and data manipulation on the targeted system.

 

Note:

Proof Of Concept Exploit Code Is Publicly Available for CVE-2024-53961.

Impact

  • Information Disclosure
  • Data Manipulation

System / Technologies affected

  • ColdFusion 2021 - Update 17 and earlier versions
  • ColdFusion 2023 - Update 11 and earlier versions

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 
Apply fixes issued by the vendor:

Vulnerability Identifier

Source

Related Link

Related Tags

AdobeInformation DisclosureData ManipulationProof of Concept

Share with

Previous

SUSE Linux Kernel Multiple Vulnerabilities

3 Dec 2024 4331 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY