CVE-2024-45113

CVE-2024-45113 affects ColdFusion versions 2023.6, 2021.12 and earlier, introducing an Improper Authentication vulnerability that can lead to privilege escalation. An attacker could gain unauthorized access without user interaction, with a network attack vector and no required privileges. The bas...

Adobe ColdFusion 授权问题漏洞

Adobe ColdFusion is a suite of rapid application development platforms from the American company Audobee Adobe. The platform includes an integrated development environment and a scripting language. Adobe ColdFusion 2023.6, prior to version 2021.12 has an authorization issue vulnerability that ste...

CVE-2024-20767

ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Access Control vulnerability that could result in arbitrary file system read. An attacker could leverage this vulnerability to access or modify restricted files. Exploitation of this issue does not require user interactio...

PT-2024-10077 · Intel · Intel Mpi Library

Name of the Vulnerable Software and Affected Versions: Intel MPI Library versions prior to 2021.12 Description: The issue is related to an uncontrolled search path element in the Intel MPI Library, which may allow an authenticated user to potentially enable escalation of privilege via local acces...

PT-2024-6652 · Adobe · Coldfusion

Name of the Vulnerable Software and Affected Versions: ColdFusion versions 2023.6, 2021.12 and earlier Description: The issue is related to weaknesses in the authentication procedure of the ColdFusion platform. This can be exploited by a remote attacker to gain unauthorized access and escalate...

CVE-2021-25174

An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory corruption vulnerability exists when reading malformed DGN files. It can allow attackers to cause a crash, potentially enabling denial of service Crash, Exit, or Restart...