CVE-2023-29300

NVD Published Date: July 12, 2023 at 04:15 PM
NVD Last Modified: January 09, 2024 at 02:00 AM
Download Patch
Vulnerability ID
CVE-2023-29300
Severity
CRITICAL
Severity Score
9.8
Summary
Adobe ColdFusion versions 2018u16 (and earlier), 2021u6 (and earlier) and 2023.0.0.330468 (and earlier) are affected by a Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does not require user interaction.
Mitigation and Patches
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-502

Recent Publish

CVE-2023-3519

CVE-2023-38203

CVE-2023-35078

CVE-2023-35082

CVE-2023-36845

CVE-2023-38035

See SecOps Solution
in action

Schedule Demo