CVE-2000-0382

CVSS 2.0 Score 2.6 of 10 (low)

Details

Published May 8, 2000
Updated: Nov 20, 2024

Summary

CVE-2000-0382 is a vulnerability affecting ColdFusion's ClusterCATS application. The issue arises when ClusterCATS appends stale query string arguments to a URL during HTML redirections. This behavior can expose sensitive information to the redirected site, potentially leading to unintended data disclosure. This vulnerability is significant as it may enable attackers to gain access to confidential data and could be exploited through specially crafted URLs. ColdFusion users are advised to address this issue promptly by updating to a patched version or implementing appropriate security measures to prevent such data leaks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share