CVE-2017-11284

9.8CRITICAL

Key Information:

Vendor: Adobe
Status: Adobe Coldfusion Update 4 And Earlier Versions For Coldfusion 2016 Release. Update 12 And Earlier Versions For Coldfusion 11.
Vendor: CVE Published:; 1 December 2017

Summary

Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.

Affected Version(s)

Adobe ColdFusion Update 4 and earlier for ColdFusion 2016 release. Update 12 and earlier for ColdFusion 11. Adobe ColdFusion Update 4 and earlier versions for ColdFusion 2016 release. Update 12 and earlier versions for ColdFusion 11.