Think you have a false positive on this rule?

Sid 1-48359

Message

SERVER-OTHER Adobe ColdFusion unauthenticated file upload attempt

Summary

This event is generated when an Adobe ColdFusion Unauthenticated File Upload attempt has occurred.

Impact

Detailed information

Affected systems

Ease of attack

False positives

False negatives

Corrective action

Contributors

  • Cisco's Talos Intelligence Group
  • Volexity

Additional References

  • helpx.adobe.com/security/products/coldfusion/apsb18-33.html
  • www.volexity.com/blog/2018/11/08/active-exploitation-of-newly-patched-coldfusion-vulnerability-cve-2018-15961/