Overview Recently, NSFOCUS CERT detected that Adobe issued a security announcement and fixed any file read vulnerability in Adobe ColdFusion (CVE-2024-53961). Due to improper restrictions on pathnames in Adobe ColdFusion, unauthenticated attackers can bypass the application’s restrictions to read files or directories outside of the restricted directory. As a result, sensitive information may be disclosed…The post Adobe ColdFusion Any File Read Vulnerability (CVE-2024-53961) appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..
First seen on securityboulevard.com
Jump to article: https://securityboulevard.com/2024/12/adobe-coldfusion-any-file-read-vulnerability-cve-2024-53961/
