CVSS Base Vector:
This host is installed with Adobe ColdFusion
and is prone to multiple vulnerabilities.
Checks if a vulnerable version is present
on the target host.
Multiple flaws are due to,
- An improper validation of user supplied input, which allow command injection
via vulnerable component.
- An unknown security bypass error.
- An unknown path traversal vulnerability.
Successful exploitation allow attckers to
disclose sensitive information, execute arbitrary code and bypass access control.
Adobe ColdFusion version 2016, Update 11 and earlier versions
and version 2018, Update 4 and earlier versions.
Update to version 2016 Update 12 or version
2018 Update 5 respectively.
Web application abuses
Find and Fix this Vulnerability:
Mageni can help you to find out if you have this or more vulnerabilities exposing you to hackers, ransomware and malware: Download Mageni's Free Edition
NVD CVE ID: