Skip to main content

Adobe ColdFusion Remote Code Execution Vulnerability

Release Date: 24 Mar 2021 1868 Views

RISK: Medium Risk

TYPE: Operating Systems - Mac OS

TYPE: Mac OS

A vulnerability was identified in Adobe ColdFusion, a remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.


Impact

  • Remote Code Execution

System / Technologies affected

  • ColdFusion 2016 Update 16 and earlier version
  • ColdFusion 2018 Update 10 and earlier versions    
  • ColdFusion 2021 Version 2021.0.0.323925

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 
Apply fixes issued by the vendor:
 
  • ColdFusion 2016 Update 17
  • ColdFusion 2018 Update 11
  • ColdFusion 2021 Update 1

Vulnerability Identifier


Source


Related Link

https://helpx.adobe.com/security/products/coldfusion/apsb21-16.html