Lucene search
K

9 matches found

Vulnrichment
Vulnrichment
added 2023/11/17 1:31 p.m.23 views

CVE-2023-26347 CVE-2023-38205 issues | ColdFusion Admin Panel Access

Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An unauthenticated attacker could leverage this vulnerability to access the administration CFM and CFC endpoints...

7.5CVSS6.5AI score0.99732EPSS
Exploits0References1
NVD
NVD
added 2023/09/14 8:15 a.m.28 views

CVE-2023-38205

Adobe ColdFusion versions 2018u18 and earlier, 2021u8 and earlier and 2023u2 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to access the administration CFM and CFC endpoints...

7.5CVSS7.3AI score0.99732EPSS
Exploits0References2
CVE
CVE
added 2023/09/14 7:40 a.m.1830 views

CVE-2023-38205

CVE-2023-38205 affects Adobe ColdFusion: versions 2018u18 and earlier, 2021u8 and earlier, and 2023u2 and earlier are vulnerable to an Improper Access Control flaw that enables an unauthenticated attacker to bypass security and access the administration CFM/CFC endpoints without user interaction....

7.5CVSS7.5AI score0.99761EPSS
In wildExploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/09/14 12:0 a.m.67 views

CVE-2023-38205

Adobe ColdFusion versions 2018u18 and earlier, 2021u8 and earlier and 2023u2 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to access the administration CFM and CFC endpoints...

7.5CVSS7.6AI score0.99761EPSS
In wildExploits0References2
Hacker One
Hacker One
added 2023/07/24 6:24 p.m.90 views

U.S. Dept Of Defense: Adobe ColdFusion - Access Control Bypass [CVE-2023-38205] at ██████

An access control bypass vulnerability was discovered in Adobe ColdFusion, allowing attackers to bypass the restriction on external access to the ColdFusion Administrator...

7.5CVSS7.5AI score0.99732EPSS
Exploits0
Circl
Circl
added 2023/07/20 5:34 a.m.14 views

CVE-2023-38205

creationtimestamp| type| source ---|---|--- 2023-07-20 05:34:05+00:00| exploited| https://t.me/thehackernews/3620 2023-07-20 06:46:04+00:00| exploited| https://t.me/KomunitiSiber/515 2023-07-20 07:09:27+00:00| exploited| Telegram/m5JSB14XcE4WmSFl9S5T7USgeuaPM5JvS0hspkLyulXfQ 2023-07-20...

7.5CVSS7.4AI score0.99732EPSS
In wildExploits0References12
The Hacker News
The Hacker News
added 2023/07/20 3:31 a.m.99 views

Adobe Rolls Out New Patches for Actively Exploited ColdFusion Vulnerability

Adobe has released a fresh round of updates to address an incomplete fix for a recently disclosed ColdFusion flaw that has come under active exploitation in the wild. The critical shortcoming, tracked as CVE-2023-38205 CVSS score: 7.5, has been described as an instance of improper access control...

9.8CVSS8.2AI score0.99761EPSS
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2023/07/20 12:0 a.m.6 views

VulnCheck KEV: CVE-2023-38205

Adobe ColdFusion contains an improper access control vulnerability that allows for a security feature bypass...

7.5CVSS7.3AI score0.99732EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2023/07/19 5:25 p.m.79 views

CVE-2023-38205: Adobe ColdFusion Access Control Bypass [FIXED]

!CVE-2023-38205: Adobe ColdFusion Access Control Bypass \FIXED\https://blog.rapid7.com/content/images/2023/07/GettyImages-1185282377-3.jpg On July 11, 2023, Rapid7 and Adobe disclosed CVE-2023-29298, an access control bypass vulnerability affecting ColdFusion, which Rapid7 had reported to Adobe i...

5CVSS7.3AI score0.99761EPSS
Exploits0
Rows per page
Query Builder