Podatność CVE-2023-38203
Publikacja: 2023-07-20

Opis:
Adobe ColdFusion versions 2018u17 (and earlier), 2021u7 (and earlier) and 2023u1 (and earlier) are affected by a Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does not require user interaction.

Typ:

CWE-502

 (Deserialization of Untrusted Data)

Affected software
Adobe -> Coldfusion 

 Referencje:
https://helpx.adobe.com/security/products/coldfusion/apsb23-41.html
Copyright 2024, cxsecurity.com

 

Back to Top