virus logo Intrusion Prevention

Lucee.Authenticated.Scheduled.Job.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt to exploit a Remote Code Execution vulnerability in Lucee Server.
The vulnerability is due to design flaw in the server. An authenticated remote attacker may be able to exploit this to queries a remote crafted ColdFusion file and execute remote code within the context of the server.

affected-products-logoAffected Products

Lucee Server

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-04-04 23.528 Default_action:pass:drop
2023-03-27 23.520
ID 52743
Created Mar 16, 2023
Updated Apr 03, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows, Linux, BSD
Affected App Other