Adobe ColdFusion versions 2018u16 (and earlier), 2021u6 (and earlier) and 2023.0.0.330468 (and earlier) are affected by a Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does not require user interaction.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/coldfusion/apsb23-40.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: adobe
Published: 2023-07-12T15:46:08.686Z
Updated: 2023-07-12T15:46:08.686Z
Reserved: 2023-04-04T20:46:42.578Z
Link: CVE-2023-29300
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-12T16:15:11.733
Modified: 2024-01-09T02:00:01.953
Link: CVE-2023-29300
JSON object: View
Redhat Information
No data.
CWE