Adobe CVE July 2023, CVE-2023-29300 - Lucee not affected

Peter · July 14, 2023, 6:33am

Is Lucee vulnerable to NVD - CVE-2023-29300 ?

I see errors due to attempts to access CFIDE\adminapi\accessmanager.cfc which results in

Syntax Error, Invalid Construct at position 1 in [wddxPacket version= …]

OS: Windows 2016
Java Version: 11.0.19+7
Tomcat Version: 9.0.74
Lucee Version: 5.4.1.8

Zackster · July 14, 2023, 7:09am

The good news is the Lucee Team has reviewed all 3 CVEs and Lucee is not affected

Once again, thanks to @reillyb for his assistance in reviewing all these

Peter · July 14, 2023, 11:15pm

Thank you for the quick response.