Adobe ColdFusion APSB18-33 Deserialization Multiple Remote Code Execution Vulnerabilities

Bugtraq ID: 105313
Class: Unknown
CVE: CVE-2018-15965
CVE-2018-15957
CVE-2018-15958
CVE-2018-15959
Remote: Yes
Local: No
Published: Sep 11 2018 12:00AM
Updated: Sep 11 2018 12:00AM
Credit: Matthias Kaiser of Code White GmbH, Gsrc from Venustech-Adlab, and Nick Bloor of Cognitous Ltd.
Vulnerable: Adobe ColdFusion 2016.0 Update 6
Adobe ColdFusion 2016.0 Update 5
Adobe ColdFusion 2016.0 Update 4
Adobe ColdFusion 2016.0 Update 3
Adobe ColdFusion 2016.0 Update 2
Adobe ColdFusion 2016.0 Update 1
Adobe ColdFusion 2018.0.0.310739
Adobe ColdFusion 11 Update 9
Adobe ColdFusion 11 Update 8
Adobe ColdFusion 11 Update 7
Adobe ColdFusion 11 Update 6
Adobe ColdFusion 11 Update 5
Adobe ColdFusion 11 Update 4
Adobe ColdFusion 11 Update 3
Adobe ColdFusion 11 Update 2
Adobe ColdFusion 11 Update 14
Adobe ColdFusion 11 Update 13
Adobe ColdFusion 11 Update 12
Adobe ColdFusion 11 Update 11
Adobe ColdFusion 11 Update 10
Adobe ColdFusion 11 Update 1
Not Vulnerable: Adobe ColdFusion 2018.0 Update 1
Adobe ColdFusion 2016.0 Update 7
Adobe ColdFusion 11 Update 15


 

Privacy Statement
Copyright 2010, SecurityFocus