Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Adobe BlazeDS, as used in ColdFusion 10 before Update 18 and 11 before Update 7 and LiveCycle Data Services 3.0.x before 3.0.0.354175, 3.1.x before 3.1.0.354180, 4.5.x before 4.5.1.354177, 4.6.2.x before 4.6.2.354178, and 4.7.x before 4.7.0.354178, allows remote attackers to send HTTP traffic to intranet servers via a crafted XML document, related to a Server-Side Request Forgery (SSRF) issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Adobe ColdFusion和LiveCycle Data Services BlazeDS 输入验证错误漏洞
Vulnerability Description
Adobe ColdFusion是美国奥多比(Adobe)公司的一款动态Web服务器产品,其运行的CFML(ColdFusion Markup Language)是针对Web应用的一种程序设计语言。Adobe BlazeDS是一个基于服务器的Java的远程访问和网络通讯技术。 Adobe ColdFusion和LiveCycle Data Services中使用的Adobe BlazeDS中存在安全漏洞。远程攻击者可借助特制的XML文档利用该漏洞向内网服务器发送HTTP流量。以下产品及版本受到影响:Ado
CVSS Information
N/A
Vulnerability Type
N/A