Exploit for #VU73597 Improper access control in ColdFusion
Vulnerability identifier: #VU73597
Vulnerability risk: High
CVSSv3.1: 7.2 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-284
Exploitation vector: Network
Exploits in database: 2
- April 28, 2023
- Adobe ColdFusion Unauthenticated Remote Code Execution [Metasploit]
- Adobe ColdFusion Unauthenticated Arbitrary File Read [Metasploit]
Impact: Information disclosure
Vulnerable software:
ColdFusion
Server applications /
Application servers
Vendor: Adobe
