{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-05T17:16:03.783","vulnerabilities":[{"cve":{"id":"CVE-2022-38424","sourceIdentifier":"psirt@adobe.com","published":"2022-10-14T20:15:13.527","lastModified":"2024-11-21T07:16:26.997","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier) are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in arbitrary file system write. Exploitation of this issue does not require user interaction, but does require administrator privileges."},{"lang":"es","value":"Adobe ColdFusion versiones Update 14 (y anteriores) y Update 4 (y anteriores) están afectadas por una vulnerabilidad de Limitación Inapropiada de un Nombre de Ruta a un Directorio Restringido (\"Salto de Ruta\") que podría resultar en una escritura arbitraria en el sistema de archivos. No es requerida una interacción del usuario para la explotación de este problema, pero sí requiere privilegios de administrador"}],"metrics":{"cvssMetricV31":[{"source":"psirt@adobe.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@adobe.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:-:*:*:*:*:*:*","matchCriteriaId":"3B54B2B0-B1E1-4B4E-A529-D0BD3B5DEEF3"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update1:*:*:*:*:*:*","matchCriteriaId":"EDB126BF-E09D-4E58-A39F-1190407D1CAB"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update10:*:*:*:*:*:*","matchCriteriaId":"8DDD85DF-69A0-476F-8365-CD67C75CF0CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update11:*:*:*:*:*:*","matchCriteriaId":"23F63675-7817-4AF0-A7DB-5E35EDABF04E"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update12:*:*:*:*:*:*","matchCriteriaId":"3E3BF53E-2C0D-4F79-8B62-4C2A50CB5F52"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update13:*:*:*:*:*:*","matchCriteriaId":"C26BF72C-E991-4170-B68B-09B20B6C0679"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update14:*:*:*:*:*:*","matchCriteriaId":"25B4B4F2-318F-4046-ADE5-E9DD64F83FD9"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update2:*:*:*:*:*:*","matchCriteriaId":"59649177-81EE-43C3-BFA5-E56E65B486DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update3:*:*:*:*:*:*","matchCriteriaId":"453B96ED-738A-4642-B461-C5216CF45CA3"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update4:*:*:*:*:*:*","matchCriteriaId":"58D32489-627B-4E49-9329-8A3B8F8E4903"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update5:*:*:*:*:*:*","matchCriteriaId":"6D5860E1-D293-48FE-9796-058B78B2D571"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update6:*:*:*:*:*:*","matchCriteriaId":"9F9336CC-E38F-4BCB-83CD-805EC7FEF806"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update7:*:*:*:*:*:*","matchCriteriaId":"97964507-047A-4CC8-8D2B-0EA0C7F9BD50"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update8:*:*:*:*:*:*","matchCriteriaId":"82208628-F32A-4380-9B0F-DC8507E7701D"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2018:update9:*:*:*:*:*:*","matchCriteriaId":"1563CE5E-A4F7-40A4-A050-BB96E332D8DD"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2021:-:*:*:*:*:*:*","matchCriteriaId":"7A94B406-C011-4673-8C2B-0DD94D46CC4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2021:update1:*:*:*:*:*:*","matchCriteriaId":"AFD05E3A-10F9-4C75-9710-BA46B66FF6E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2021:update2:*:*:*:*:*:*","matchCriteriaId":"D57C8681-AC68-47DF-A61E-B5C4B4A47663"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2021:update3:*:*:*:*:*:*","matchCriteriaId":"75608383-B727-48D6-8FFA-D552A338A562"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:coldfusion:2021:update4:*:*:*:*:*:*","matchCriteriaId":"7773DB68-414A-4BA9-960F-52471A784379"}]}]}],"references":[{"url":"https://helpx.adobe.com/security/products/coldfusion/apsb22-44.html","source":"psirt@adobe.com","tags":["Vendor Advisory"]},{"url":"https://helpx.adobe.com/security/products/coldfusion/apsb22-44.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}