Published threat advisories for July 12, 2023

Adobe ColdFusion is affected by a deserialization vulnerability enabling arbitrary code execution without user interaction. This poses a significant risk to affected organizations, potentially leading to unauthorized system control and data compromise. Attackers can exploit this flaw by sending malicious data to expose

NVD published: July 12, 2023 • CISA KEV

An improper access control vulnerability in Adobe ColdFusion allows attackers to bypass security features and access administration endpoints. This bypass can lead to unauthorized access and potential data compromise. Organizations should identify affected systems and apply vendor-provided mitigations to reduce busines

NVD published: July 12, 2023 • CISA KEV