Deserialization of Untrusted Data Vulnerability in Adobe ColdFusion

Deserialization of Untrusted Data Vulnerability in Adobe ColdFusion

CVE-2018-15965 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.

Learn more about our Web Application Penetration Testing UK.