The default configuration of Adobe ColdFusion 9.0 does not restrict access to collections that have been created by the Solr Service, which allows remote attackers to obtain collection metadata, search information, and index data via a request to an unspecified URL.

Adobe ColdFusion 9.0的默认配置并未限制由Solr服务创建的集合的访问，这使得远程攻击者可以通过向未指定URL的 requests 获取集合元数据、搜索信息和索引数据。

NVD 暂无评分

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

NVD 暂无漏洞类别信息

神龙GPT 暂无漏洞类别信息（请耐心等待）