CVE-1999-0477

Summary

CVE-1999-0477 is a vulnerability affecting the Expression Evaluator in ColdFusion Application Server. This issue permits remote attackers to upload files to the server through openfile.cfm, as the server's access restrictions are inadequate. This can lead to unauthorized file uploads and potential security breaches. Attackers may exploit this vulnerability to execute malicious code or gain privileged access to the server. It is strongly advised that users update their ColdFusion Application Servers to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.