CVE-2017-3066: Adobe ColdFusion Deserialization Vulnerability. Adobe

Adobe ColdFusion Deserialization Vulnerability. Adobe ColdFusion contains a deserialization vulnerability in the Apache BlazeDS library that allows for arbitrary code execution.

• CISA KEV-listed (remediation due 2025-03-17)
• EPSS 93.7% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions