CVE-2024-20767: Adobe ColdFusion Improper Access Control Vulnerability.

Adobe ColdFusion Improper Access Control Vulnerability. Adobe ColdFusion contains an improper access control vulnerability that could allow an attacker to access or modify restricted files via an internet-exposed admin panel.

• CISA KEV-listed (remediation due 2025-01-06)
• EPSS 94.1% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions