{"uuid": "e67a0f4a-3b27-4e7f-99f3-369779951650", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-3066", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5141", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2017-3066\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a Java deserialization vulnerability in the Apache BlazeDS library. Successful exploitation could lead to arbitrary code execution.\n\ud83d\udccf Published: 2017-04-27T14:00:00.000Z\n\ud83d\udccf Modified: 2025-02-24T15:18:40.638Z\n\ud83d\udd17 References:\n1. https://www.exploit-db.com/exploits/43993/\n2. https://helpx.adobe.com/security/products/coldfusion/apsb17-14.html\n3. http://www.securityfocus.com/bid/98003\n4. http://www.securitytracker.com/id/1038364", "creation_timestamp": "2025-02-24T15:27:38.000000Z"}