Security Advisory

CVE-2022-38424

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-10-14 19:42:57

Last updated 2025-04-23 16:48:16

Assigner adobe

State PUBLISHED

Description

Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by an Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) vulnerability that could result in arbitrary file system write. Exploitation of this issue does not require user interaction, but does require administrator privileges.

← Browse all CVEs View on cve.org ↗