virus logo Intrusion Prevention

Adobe.ColdFusion.IPFilterUtils.Authentication.Bypass

description-logoDescription

This indicates an attack attempt to exploit an Authentication Bypass Vulnerability in Adobe Systems ColdFusion.
The vulnerability is due to improper validation of the URL path by the IPFilterUtils class. A remote, unauthenticated attacker could exploit this vulnerability by sending crafted requests to the target server. Successful exploitation could result in access to the ColdFusion Administrator endpoints.

description-logoOutbreak Alert

FortiGuards labs observed extremely widespread exploitation attempts relating to security bypass vulnerabilities in Adobe ColdFusion. Successful exploitation could result in access of the ColdFusion Administrator endpoints.

View the full Outbreak Alert Report

affected-products-logoAffected Products

Adobe Systems ColdFusion 2018 prior to Update 19
Adobe Systems ColdFusion 2021 prior to Update 9
Adobe Systems ColdFusion 2023 prior to Update 3

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://helpx.adobe.com/security/products/coldfusion/apsb23-47.html

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2024-02-08 26.730
Modified
 Sig Added
2023-11-20 26.680
Modified
 Sig Added
2023-10-19 25.660
Modified
 Default_action:pass:drop
2023-10-05 25.651
Modified
 Sig Added
2023-08-21 25.624
New
ID 53534
Created Aug 15, 2023
Updated Feb 08, 2024
CVE ID
Tags Adobe ColdFusion Access Bypass Threat Signal
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Known Exploited Yes
Exploit Prediction Score 94.18%
Default Action drop
Active
Affected OS Windows, Linux, MacOS
Affected App Adobe
Profile Type Permission/Privilege/Access Control