Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2021-40699
HistorySep 07, 2023 - 1:15 p.m.

Improper access control

2023-09-0713:15:00
PRIOn knowledge base
www.prio-n.com
6
coldfusion
2021
access control
vulnerability
permissions
cfide
authenticated
attacker
data manipulation

7.1 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.3%

JSON

ColdFusion version 2021 update 1 (and earlier) and versions 2018.10 (and earlier) are impacted by an improper access control vulnerability when checking permissions in the CFIDE path. An authenticated attacker could leverage this vulnerability to access and manipulate arbitrary data on the environment.

Related

cve 1
nvd 1
cvelist 1
adobe 1
nessus 1
openvas 1
cve
cve
CVE-2021-40699
2023-09-07 13:15:07
nvd
nvd
CVE-2021-40699
2023-09-07 13:15:07
cvelist
cvelist
CVE-2021-40699 ColdFusion CFIDE Improper Access Control Leads To Privilege Escalation
2023-09-07 12:54:41
adobe
adobe
APSB21-75 Security update available for Adobe ColdFusion
2021-09-14 00:00:00
nessus
nessus
Adobe ColdFusion 2018.x < 2018 Update 12 / 2021.x < 2021 Update 2 Multiple Vulnerabilities (APSB21-75)
2021-09-16 00:00:00
openvas
openvas
Adobe ColdFusion Multiple Vulnerabilities (APSB21-75)
2021-09-16 00:00:00

7.1 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.3%

JSON
Related for PRION:CVE-2021-40699
cve1nvd1cvelist1adobe1nessus1openvas1