CVE-2017-3066
Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
Vulnerability Description
Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a Java deserialization vulnerability in the Apache BlazeDS library. Successful exploitation could lead to arbitrary code execution.
Affected Platforms (CPE)
📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 10.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 11.0📦
Adobe
Coldfusion
= 2016📦
Adobe
Coldfusion
= 2016📦
Adobe
Coldfusion
= 2016📦
Adobe