SID 1:25976

Report a false positive

Rule Category

POLICY-OTHER --

Alert Message

POLICY-OTHER Adobe ColdFusion admin API access attempt

Rule Explanation

This rule looks for an HTTP request sent to the /CFIDE/adminapi endpoint.

What To Look For

This rule alerts on an attempt to access the Adobe ColdFusion admin API.

Known Usage

No public information

False Positives

Known false positives, with the described conditions

This rule fires on any attempt to access the sensitive "/CFIDE/adminapi" (Admin API) endpoint on Adobe ColdFusion web servers.

Contributors

Cisco Talos Intelligence Group

Rule Groups

Rule Categories::Policy::Other

CVE

CVE-2013-0632 CVE-2024-20767

Additional Links

www.adobe.com/support/security/advisories/apsa13-01.html
helpx.adobe.com/security/products/coldfusion/apsb24-14.html

Rule Vulnerability

N/A

Not Applicable

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.
CVE-2013-0632
 Loading description
CVE-2024-20767
 Loading description