Description
Adobe has released security updates to address vulnerabilities in ColdFusion. It is recommended that you take the necessary precautions by ensuring your product are always updated.
Summary
Adobe has released security updates for ColdFusion versions 2018 and 2016. These updates resolve two critial and one important vulnerability that could lead to arbitrary code execution.
Affected Versions
|
Product |
Affected Versions |
Platform |
|
ColdFusion 2018 |
Update 4 and earlier versions |
All |
|
ColdFusion 2016 |
Update 11 and earlier versions |
All |
Solution
|
Product |
Updated Version |
Platform |
Priority rating |
Availability |
|
ColdFusion 2018 |
Update 5 |
All |
2 |
|
|
ColdFusion 2016 |
Update 12 |
All |
2 |
For more information on the updates you can follow this url:
https://helpx.adobe.com/security/products/coldfusion/apsb19-47.html
The Guyana National CIRT recommends users and administration to follow these guidelines and to apply them where necessary.
Reference
Adobe Releases Security Updates for ColdFusion (US-Cert)
https://www.us-cert.gov/ncas/current-activity/2019/09/25/adobe-releases-security-updates-coldfusion