CISA: Adobe Releases Security Updates for ColdFusion
Adobe Releases Security Updates for ColdFusion
On Nov. 14, 2023, Adobe released security updates addressing vulnerabilities affecting unpatched ColdFusion software. Exploitation of some of these vulnerabilities may allow a malicious cyber actor to take control of an affected system.
CISA urges organizations to review Adobe ColdFusion security bulletin APSB23-52 for more information and to:
- Apply the recommended updates in APSB23-52.
- Follow Adobe recommendations on ColdFusion hardening.
- Consider adding a web application firewall (WAF) filter for
CFIDE
for external users. - Consider using CISA’s Cybersecurity Incident and Vulnerability Response Playbooks for other actionable steps.
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.