CVE-1999-0477

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 25, 1999
Updated: Sep 5, 2008

Summary

CVE-1999-0477 is a vulnerability affecting the Expression Evaluator in ColdFusion Application Server. Malicious actors can exploit this issue by uploading files to the server through openfile.cfm, bypassing inadequate access controls. Successful exploitation could result in unauthorized file write access and potential server compromise. This vulnerability was identified in 1999 and posed a significant threat to ColdFusion users until appropriate patches were released.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share