Adobe ColdFusion 2021 Update 17

CPE Details

Adobe ColdFusion 2021 Update 17
adobe
coldfusion
2021
2025-02-19
11h36 +00:00
2025-02-19
11h36 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:adobe:coldfusion:2021:update17:*:*:*:*:*:*

Informations

Vendor

adobe

Product

coldfusion

Version

2021

Update

update17

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-53961 2024-12-23 20h11 +00:00 ColdFusion versions 2023.11, 2021.17 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access files or directories that are outside of the restricted directory set by the application. This could lead to the disclosure of sensitive information or the manipulation of system data. Exploitation of this issue requires the admin panel be exposed to the internet.
9.8
Critique
CVE-2011-0733 2011-02-01 16h00 +00:00 Cross-site scripting (XSS) vulnerability in Adobe ColdFusion before 9.0.1 CHF1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header in an id=- query to a .cfm file.
4.3