Adobe have released updated versions of ColdFusion web application development platform. These fixes resolve security vulnerabilities of which one critical (CVE-2019-7091) and one important (CVE-2019-7092). Successful exploitation of the critical vulnerability may allow an attacker to execute arbitrary code in the affected system.
Affected versions:
- ColdFusion (2018 release): update 1 and earlier versions
- ColdFusion (2016 release): update 7 and earlier versions
- ColdFusion 11: update 15 and earlier versions
More information can be read from Adobe's security bulletin.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment