CVE-2004-2331 in ColdFusioninfo

Summary

ColdFusion MX 6.1 and 6.1 J2EE allows local users to bypass sandbox security restrictions and obtain sensitive information by using Java reflection methods to access trusted Java objects without using the CreateObject function or cfobject tag.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

08/16/2005

Disclosure

12/31/2004

Moderation

VulDB entry created

Entries

1: VDB-23226

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

4.0

EPSS

0.00013

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-2331
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-2331
CVE Details	https://www.cvedetails.com/cve/CVE-2004-2331/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!