ColdFusion Vulnerability Alert
Last week Adobe released a new security update for Adobe ColdFusion versions 2021, 2016, and 2018. This latest update responds to the discovery of an Improper Input Validation vulnerability (CVE-2021-21087) that could lead to arbitrary code execution. This vulnerability is rated Moderate with the recommendation that administrators install this new update within the next 30 days.
Please check out Adobe’s page for tech notes on your specific version of ColdFusion, as well as additional requirements for JDK/JRE and application servers.
If you have questions about your version of ColdFusion, or you’d like Vivio to take care of this update for you under SysOps Support, please let us know!