1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Adobe patches critical vulnerability in ColdFusion application server

Discussion in 'CSO' started by RSS, Aug 31, 2016.

  1. RSS

    RSS New Member Member

    Adobe Systems released critical security patches for its ColdFusion application server, which has been a target for hackers in the past.

    The updates are available for ColdFusion versions 10 and 11 and address a critical security vulnerability that could lead to sensitive information disclosure when parsing specially crafted XML entities.

    Administrators are advised to upgrade their ColdFusion deployments to version 10 update 21 or version 11 update 10, depending on which branch they're using. The ColdFusion 2016 release is not affected, Adobe said in a security advisory.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page