CVE-2023-44353 – ColdFusion WDDX Deserialization Gadgets
https://notcve.org/view.php?id=CVE-2023-44353
Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by an Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. • https://helpx.adobe.com/security/products/coldfusion/apsb23-52.html • CWE-502: Deserialization of Untrusted Data •
CVE-2023-44350 – ColdFusion | Deserialization of Untrusted Data (CWE-502)
https://notcve.org/view.php?id=CVE-2023-44350
Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by an Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. • https://helpx.adobe.com/security/products/coldfusion/apsb23-52.html • CWE-502: Deserialization of Untrusted Data •
CVE-2023-6016 – H2O Remote Code Execution via POJO Model Import
https://notcve.org/view.php?id=CVE-2023-6016
An attacker is able to gain remote code execution on a server hosting the H2O dashboard through it's POJO model import feature. Un atacante puede obtener la ejecución remota de código en un servidor que aloja el panel de H2O a través de su función de importación de modelo POJO. • https://huntr.com/bounties/83dd17ec-053e-453c-befb-7d6736bf1836 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2023-44330 – Adobe Photoshop 2023 CC 24.7 Memory Corruption Vulnerability III.
https://notcve.org/view.php?id=CVE-2023-44330
Adobe Photoshop versions 24.7.1 (and earlier) and 25.0 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/photoshop/apsb23-56.html • CWE-787: Out-of-bounds Write •
CVE-2023-44371 – ZDI-CAN-21998: Adobe Acrobat Reader DC Font Parsing Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-44371
Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/acrobat/apsb23-54.htm • CWE-416: Use After Free •