ColdFusion version 2021 update 1 (and earlier) and versions 2018.10 (and earlier) are impacted by an Use of Inherently Dangerous Function vulnerability that can lead to a security feature bypass  . An authenticated attacker could leverage this vulnerability to access and manipulate arbitrary data on the environment.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2023-09-07T12:54:33.320Z

Updated: 2024-09-04T20:07:49.774Z

Reserved: 2021-09-08T16:58:12.651Z

Link: CVE-2021-40698

cve-icon Vulnrichment

Updated: 2024-08-04T02:51:07.012Z

cve-icon NVD

Status : Modified

Published: 2023-09-07T13:15:07.160

Modified: 2023-11-07T03:38:38.247

Link: CVE-2021-40698

cve-icon Redhat

No data.