CVE-2017-11283

Summary

Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.

Affected Software

VendorProductVersion RangeStatus
n/aAdobe ColdFusion Update 4 and earlier versions for ColdFusion 2016 release. Update 12 and earlier versions for ColdFusion 11.Adobe ColdFusion Update 4 and earlier versions for ColdFusion 2016 release. Update 12 and earlier versions for ColdFusion 11.affected

Weaknesses

  • Vulnerable 3rd Party Library

ADP Enrichment

CVE Program Container

Additional References

References