There is an access control bypass vulnerability in Adobe ColdFusion versions 2023 Update 2 and below, 2021 Update 8 and below and 2018 update 18 and below, which allows a remote attacker to bypass the ColdFusion mechanisms that restrict unauthenticated external access to ColdFusion’s Administrator.
View the template here CVE-2023-38205.yaml
References:
https://nvd.nist.gov/vuln/detail/CVE-2023-38205