We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An unauthenticated attacker could leverage this vulnerability to access the administration CFM and CFC endpoints. Exploitation of this issue does not require user interaction.
Reserved 2023-02-22 | Published 2023-11-17 | Updated 2024-10-21 | Assigner adobeImproper Access Control (CWE-284)
helpx.adobe.com/security/products/coldfusion/apsb23-52.html
Support options