Mitigation Instructions for Adobe ColdFusion CVE-2023-29300
SUBJECT: CVE-2023-29300: Adobe ColdFusion Deserialization of Untrusted Data Vulnerability - Detailed Mitigation Guide
1 min read
CyRisk Vulnerability Management Team : Feb 22, 2024 2:03:26 PM
SUBJECT: CVE-2023-44487 Uncontrolled Resource Consumption
TECH STACK:
DATE(S) ISSUED: 10/10/2023
NVD Last Modified: 02/02/2024
CRITICALITY: HIGH (CVE Base Score: 7.5)
OVERVIEW:
This vulnerability affects the HTTP/2 Protocol, widely used for web communication. It allows attackers to send rapid requests and cancellations, consuming server resources and potentially causing denial-of-service (DoS), exploited in October 2023, causing record-breaking DoS attacks.
ATTACK MECHANISMS:
AFFECTED SYSTEMS:
MITIGATION SOLUTION:
Confirmation & Additional Information:
REFERENCES:
Third Party Advisories:
SUBJECT: CVE-2023-29300: Adobe ColdFusion Deserialization of Untrusted Data Vulnerability - Detailed Mitigation Guide
SUBJECT: Critical Exchange Server Elevation of Privilege Vulnerability (CVE-2024-21410)
SUBJECT: Mitigate Cisco ASA and FTD Information Disclosure Vulnerability (CVE-2020-3259)