CVE-2023-38203: Adobe ColdFusion Deserialization of Untrusted Data

Adobe ColdFusion Deserialization of Untrusted Data Vulnerability. Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for code execution.

• CISA KEV-listed (remediation due 2024-01-29)
• used in ransomware campaigns
• EPSS 94.3% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions