vulnerability

APSB23-47: Security updates available for Adobe ColdFusion | APSB23-47 (CVE-2023-29308)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Jul 12, 2023	Jul 17, 2023	Jun 6, 2025

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Jul 12, 2023

Added

Jul 17, 2023

Modified

Jun 6, 2025

Description

Adobe InDesign versions ID18.3 (and earlier) and ID17.4.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Solution(s)

adobe-coldfusion-2018-release-update-19adobe-coldfusion-2021-release-update-9adobe-coldfusion-2023-release-update-3

References

CVE-2023-29308
https://attackerkb.com/topics/CVE-2023-29308
URL-https://helpx.adobe.com/security/products/coldfusion/apsb23-47.html

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today