WEB APPLICATION VULNERABILITIES Standard & Premium

ColdFusion JNDI injection RCE

Description

ColdFusion allows an unauthenticated user to connect to any LDAP server. An attacker can exploit it to achieve remote code execution.

Remediation

Upgrade to the latest version of ColdFusion.

References

A Journey From JNDI/LDAP Manipulation To RCE

Related Vulnerabilities

WordPress Plugin Gutenberg Block Editor Toolkit-EditorsKit Remote Code Execution (1.31.5)

Code Evaluation (PHP)

WordPress Plugin WP Super Cache Remote Code Execution (1.7.1)

OpenX arbitrary file upload

Drupal Core 8.5.x Remote Code Execution (8.5.0 - 8.5.10)

Severity

High

Classification

CVE-2018-15957 CWE-502 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Code Execution Acumonitor