News

CSOonline5mon

Critical deserialization bugs in Adobe, Oracle software actively ...

In a 2018 blog post, Code White researchers detailed vulnerabilities in Adobe ColdFusion (versions 11 and 12), focusing on deserialization issues within the Action Message Format (AMF) used by ...
CSOonline3mon

Big hole in big data: Aparche Parquet has a ritical deserialization bug ...

A flaw in code for handling Parquet, Apache’s open-source columnar data file format, allows attackers to run arbitrary code on vulnerable instances. The vulnerability, tracked as CVE-2025-30065 ...
Dark Reading1y

Adobe Patches Critical Deserialization Vulnerability, but Exploits ...

When deserialization occurs without validating a trusted source, it can lead to denial of service or code execution. These vulnerabilities, which are considered critical and important, and could ...