Posts tagged "ColdFusion"

Security Updates Available for ColdFusion (APSB19-14)

Adobe has published a Security Bulletin (APSB19-14) regarding the availability of hotfixes for ColdFusion versions 2018, 2016 and 11. These hotfixes resolve a Critical file upload restriction bypass (CVE-2019-7816) that could result in arbitrary code execution in the context of the running ColdFusion service.  Adobe recommends customers apply the relevant hotfix to their product installation using the instructions referenced in the security bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

Security Bulletins Posted

Adobe has published security bulletins for Adobe Flash Player (APSB19-06), Adobe ColdFusion (APSB19-10), Adobe Acrobat and Reader (APSB19-07) and Adobe Creative Cloud Desktop Application (APSB19-11). Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

UPDATED: Security Bulletins Posted

Adobe has published security bulletins for Adobe ColdFusion(APSB18-33) and Adobe Flash Player (APSB18-31). Adobe recommends users update their product installations to the latest versions using the instructions referenced in the relevant bulletin.

UPDATE: As of September 28, Adobe is aware of a report that CVE-2018-15961 is being actively exploited in the wild. The updates for ColdFusion 2018 and ColdFusion 2016 announced in APSB18-33 have been elevated to Priority 1, and Adobe recommends customers update to the latest version as soon as possible.

This posting is provided “AS IS” with no warranties and confers no rights.

[UPDATED] Security Bulletins Posted

[This post has been updated to include a link to the Security Bulletin for ColdFusion.]

Adobe has published security bulletins for Adobe Flash Player (APSB18-08), Adobe Experience Manager (APSB18-10), Adobe InDesign CC (APSB18-11), Digital Editions (APSB18-13), ColdFusion (APSB18-14) and the Adobe PhoneGap Push plugin (APSB18-15).  Adobe recommends users update their product installations to the latest versions using the instructions referenced in the relevant bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

Security Bulletins Posted

Adobe has published security bulletins for Adobe RoboHelp (APSB17-25), Adobe Flash Player (APSB17-28) and ColdFusion (APSB17-30). Adobe recommends users update their product installations to the latest versions using the instructions referenced in the relevant bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

Security Bulletin Posted for ColdFusion (APSB17-14)

Adobe has published a Security Bulletin (APSB17-14) announcing the availability of hotfixes for ColdFusion versions 2016, 11 and 10. These hotfixes resolve an input validation issue that could be used in reflected XSS (cross-site scripting) attacks (CVE-2017-3008). These hotfixes also include an updated version of Apache BlazeDS to mitigate java deserialization (CVE-2017-3066). Adobe recommends customers apply the relevant hotfix to their product installation using the instructions referenced in the security bulletin.

 

This posting is provided “AS IS” with no warranties and confers no rights.

Security Bulletins Posted

Adobe has published the following security bulletins to advise customers of available security updates.  Adobe recommends users update their product installations to the latest versions using the instructions referenced in the relevant bulletin:

This posting is provided “AS IS” with no warranties and confers no rights.

Security Bulletin Posted for ColdFusion (APSB16-30)

Adobe has published a Security Bulletin (APSB16-30) announcing the availability of hotfixes for ColdFusion versions 11 and 10.  These hotfixes resolve a critical vulnerability that could lead to information disclosure (CVE-2016-4264).  Adobe recommends customers apply the relevant hotfix to their product installation using the instructions referenced in the security bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

Security Bulletins Posted

Adobe has published security bulletins for the Adobe DNG SDK (APSB16-19), Adobe Brackets (APSB16-20), Adobe Creative Cloud Desktop Application (APSB16-21) and ColdFusion (APSB16-22). Adobe recommends users update their product installations to the latest versions using the instructions referenced in the relevant bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

Security Updates for Adobe Acrobat and Reader and Hotfixes for ColdFusion Available

Security Bulletins for Adobe Acrobat and Reader (APSB16-14) as well as ColdFusion (APSB16-16) have been published. Adobe recommends users update their product installations to the latest versions using the instructions in the relevant security bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.