CVE-2024-20767CISA KEV: Actively Exploited

Adobe ColdFusion Improper Access Control Vulnerability

Published Dec 16, 2024·Updated Dec 16, 2024

Description

Adobe ColdFusion contains an improper access control vulnerability that could allow an attacker to access or modify restricted files via an internet-exposed admin panel.

Public Exploits & PoCs4 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free