Adobe patches critical vulnerability in ColdFusion

News by Doug Olenick

Adobe today released a critical security update for three ColdFusion products.

Adobe today released a critical security update for three ColdFusion products.

The flaw, CVE-2019-7816,a file upload restriction bypass if exploited could lead to arbitrary code execution in the context of the running ColdFusion service.?The products affected are ColdFusion 2018, ColdFusion 2016 and ColdFusion 11.

The vulnerability has been spotted in the wild, Adobe reported.

This article was originally published on SC Media US.

Find this article useful?

Get more great articles like this in your inbox every lunchtime

Upcoming event 

Webcast: Understanding this year's biggest adversaries - and how to combat them 

Nation-state activity, versatile, slippery strategies and Big Game Hunting - the threats are real, dangerous and ever changing. 
Brought to you in partnership with Crowdstrike