ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Path Traversal vulnerability. Successful exploitation could lead to Access Control Bypass in the context of the current user.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/coldfusion/apsb19-47.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-09-27 09:15
Updated : 2020-09-04 07:21
NVD link : CVE-2019-8074
Mitre link : CVE-2019-8074
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
adobe
- coldfusion