← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-29300 — Actively Exploited: ColdFusion (Adobe)

Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for code execution.

CVE IDCVE-2023-29300
VendorAdobe
ProductColdFusion
Vulnerability nameAdobe ColdFusion Deserialization of Untrusted Data Vulnerability
Date added2024-01-08
Remediation due2024-01-29
Known ransomware useKnown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionAdobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →