Auto-add JVM args needed to secure Adobe CF's latest serialization bugs

Description

Adobe has released a handful of updates that requires J2E installations to manually add special JVM args to prevent Java serialization vulns. I'm not clear whether Adobe CF is vulnerable on CommandBox since I think some of these require an RMI server to be running, but we should check into it and see about adding those args if we can just to be as secure as possible by default.

Assignee

Unassigned

Reporter

Brad Wood

Labels

None

Affects versions

None

Fix versions

None

Priority

Major
Configure