Vulnerability CVE-2023-38203


Published: 2023-07-20

Description:
Adobe ColdFusion versions 2018u17 (and earlier), 2021u7 (and earlier) and 2023u1 (and earlier) are affected by a Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does not require user interaction.

Type:

CWE-502

(Deserialization of Untrusted Data)

Affected software
Adobe -> Coldfusion 

 References:
https://helpx.adobe.com/security/products/coldfusion/apsb23-41.html

Copyright 2024, cxsecurity.com

 

Back to Top