THREAT OPS › CVEs › CVE-2024-20767
CVE-2024-20767 — Adobe ColdFusion Improper Access Control Vulnerability
Adobe ColdFusion contains an improper access control vulnerability that could allow an attacker to access or modify restricted files via an internet-exposed admin panel.
Vulnerability details
- Affected productsColdFusion
- KEV remediation due2025-01-06