3 matches found
CVE-2023-38203 Analysis CVE-2023-29300 Bypass: Adobe ColdFusion Pre-Auth RCE
Adobe ColdFusion versions 2018u17 and earlier, 2021u7 and earlier and 2023u1 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does not require user interaction...
CVE-2023-38203
creationtimestamp| type| source ---|---|--- 2023-07-18 13:11:26+00:00| exploited| https://t.me/truesecator/4626 2023-07-18 16:47:06+00:00| seen| https://t.me/ctinow/124535 2023-07-20 11:14:46+00:00| exploited| https://t.me/truesecator/4637 2023-07-20 20:32:43+00:00| seen|...
Adobe ColdFusion < 2018.x < 2018u18 / 2021.x < 2021u8 / 2023.x < 2023u2 Code Execution (APSB23-41)
The version of Adobe ColdFusion installed on the remote Windows host is prior to 2018.x update 18, 2021.x update 8, or 2023.x update 2. It is, therefore, affected by a code execution vulnerability as referenced in the APSB23-41 advisory. Due to deserialization of untrusted data, a remote,...