Multiple vulnerabilities in Adobe ColdFusion

CERT-LatestNews ThreatsCybercrime

1) Deserialization of untrusted data Description. The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to input validation error when processing serialized data. A remote unauthenticated attacker can pass specially crafted serialized….