December 23, 2024
RELEASED- ColdFusion 2023 and 2021 December 23rd, 2024 Security Updates
Comments
(0)
December 23, 2024
RELEASED- ColdFusion 2023 and 2021 December 23rd, 2024 Security Updates
I am working with ColdFusion Support team.
Staff 17 posts
Followers: 13 people
(0)

We have released critical security updates for ColdFusion (2023 release) and ColdFusion (2021 release).

Adobe is aware that CVE-2024-53961 has a known proof-of-concept that could cause an arbitrary file system read.

View the security bulletin, APSB24-107, and the tech notes for more information.

Download the updates from the following locations:

For more information, view the following tech notes:

Known issues in the updates

  • When Update 12 of ColdFusion (2023 release) or Update 18 of ColdFusion (2021 release) is installed on JEE deployments, an error message might appear in certain cases upon attempting to view the Settings Summary page in ColdFusion Administrator.
  • If you encounter an issue while applying Update 12 on the ColdFusion (2023 release) cloud images, contact cfsup@adobe.com for a resolution.

Are the Docker images available

The images will be shortly available on the Docker hub and ECR.

Is CFFiddle updated with the changes

CFFiddle will be shortly updated with the changes.Please update your ColdFusion versions and provide your valuable feedback.

0 Comments
Add Comment