Mitigation Instructions for Adobe ColdFusion CVE-2023-29300
SUBJECT: CVE-2023-29300: Adobe ColdFusion Deserialization of Untrusted Data Vulnerability - Detailed Mitigation Guide
1 min read
CyRisk Vulnerability Management Team : Feb 23, 2024 4:42:57 PM
SUBJECT: Critical DoS Vulnerability (CVE-2023-6549) in Citrix NetScaler ADC & Gateway - Immediate Update Required
TECH STACK: Citrix NetScaler ADC and NetScaler Gateway versions 12.1 through 14.1 (excluding 12.1-55.302 and 13.1-37.176)
DATE(S) ISSUED: 01/17/2024
NVD Last Modified: 01/24/2024
CRITICALITY: HIGH (Base Score 7.5)
OVERVIEW:
A critical denial-of-service (DoS) vulnerability exists in Citrix NetScaler ADC and NetScaler Gateway due to improper restriction of operations within a memory buffer. This vulnerability allows unauthenticated attackers to crash affected devices, potentially causing service outages and disruption. This vulnerability is actively exploited in the wild, posing a significant risk to organizations using vulnerable versions.
SOLUTION/MITIGATION:
Confirmation & Additional Information:
REFERENCES:
SUBJECT: CVE-2023-29300: Adobe ColdFusion Deserialization of Untrusted Data Vulnerability - Detailed Mitigation Guide
SUBJECT: Critical Exchange Server Elevation of Privilege Vulnerability (CVE-2024-21410)
SUBJECT: Mitigate Cisco ASA and FTD Information Disclosure Vulnerability (CVE-2020-3259)