We have released critical security updates for ColdFusion (2023 release) and ColdFusion (2021 release). Adobe is aware that CVE-2024-53961 has a known proof-of-concept that could cause an arbitrary file system read. View the security bulletin, APSB24-107, and the tech notes for more information. Download the updates from the following locations: ColdFusion (2023 release) Updates ColdFusion (2021 release) Updates For more information, view the following tech notes: ColdFusion (2023 release) Update 12 ColdFusion (2021 release) Update 18 Known issues in the updates […]
[Update 13 Dec]: Added cfencode.sh to the table of removals. Updated Customizing an HTTP response to HTTP reason phrases. Added contact email id cf-deprecation@adobe.com In the upcoming ColdFusion (2025 release), we will deprecate and remove certain features to enhance the overall experience, improve security, stay aligned with the latest technological advancements, and eliminate obsolete libraries. We announced the deprecations and removals on the ColdFusion pre-release forum a few days ago. If you haven’t already signed up, please do so today As part of this exercise, […]
We are pleased to announce that we have released general updates to ColdFusion (2023 release) Update 11 and ColdFusion (2021 release) Update 17. The updates include bug fixes and enhancements in Administrator, Language, CFSetup, Database, and other areas. They also contain library upgrades, such as netty, ehcache, etc. The updates also include enhancements to whitespace management and client variable support in CFPM. Where do I download the updates from Download the updates from the following locations: ColdFusion (2023 release) Updates […]
We are pleased to announce that we have released general updates to ColdFusion (2023 release) Update 10 and ColdFusion (2021 release) Update 16. The updates resolve a critical vulnerability that could lead to the deserialization of untrusted data. For more information, view the security bulletin APSB24-71. ColdFusion (2021 release) Update 16 also fixes bug CF-4223435, where the previous installation (2021.15) caused certain packages to be uninstalled. View the tech note of ColdFusion 2021.16 for more details. Where do I download the updates from […]
We are pleased to announce that we have released general updates to ColdFusion (2023 release) Update 9 and ColdFusion (2021 release) Update 15. We’ve upgraded Tomcat from version 9.0.85 to version 9.0.93 for both versions. Where do I download the updates from ColdFusion (2023 release) Updates ColdFusion (2021 release) Updates Tech Note link ColdFusion (2023 release) Update 9 ColdFusion (2021 release) Update 15 Are the Docker images available? Docker images are available to use Docker hub and ECR.
We are pleased to announce that we have released security updates to ColdFusion (2023 release) Update 8 and ColdFusion (2021 release) Update 14.This update includes several security fixes to ensure the safety and security of our systems. These changes address potential vulnerabilities and threats and are part of our ongoing commitment to protecting your data and privacy.For more information, view the security bulletin, APSB24-41. Where do I download the updates from Download the updates from the following locations: ColdFusion (2023 release) […]
ColdFusion (2023 release) Update 7 and ColdFusion (2021 release) Update 13 (release date, March 12, 2024) addresses vulnerabilities mentioned in the security bulletin [APSB24-14] and fixes other security issues. This update also contains a Tomcat upgrade (v9.0.85). This update also contains a major change related to scope look-up behavior that could impact your applications. Where do I download the updates from ColdFusion (2023 updates) ColdFusion (2021 updates) In these updates, we’ve fixed a few security bugs mentioned in the […]
ColdFusion (2023 release) Update 6 and ColdFusion (2021 release) Update 12 (release date, November 14, 2023) address vulnerabilities that are mentioned in the security bulletin, APSB23-52. These updates resolve critical vulnerabilities that could lead to improper access control and security feature bypass and others. Where do I download the updates from ColdFusion (2023 updates) ColdFusion (2021 updates) In these updates, we’ve fixed a few security bugs mentioned in the security bulletin, APSB23-52. For more information, see the tech notes below: ColdFusion (2023 […]
Document update history: – 10/10/2023: Added Docker Hub and ECR locations. – 10/10/2023: Refreshed the Server ZIP and GUI installers, Lockdown installer, and Add-on installer for ColdFusion (2023 release). Head over to ColdFusion downloads to download the installers. We are pleased to announce the availability of ColdFusion (2023 release) Update 5 and ColdFusion (2021 release) Update 11 today! Where do I download the updates from ColdFusion (2023 updates) ColdFusion (2021 updates) What’s new and changed in the updates Both the […]
We are pleased to announce the availability of ColdFusion (2023 release) Update 4 and ColdFusion (2021 release) Update 10. These updates introduce the ColdFusion serial filter that can be used to allow or disallow Java classes or packages for the deserialization of Wddx packets. What is the ColdFusion serial filter? The cfserialfilter.txt file ensures protection against insecure Wddx deserialization attacks. On the other hand, the already existing serialfilter.txt blocks Java deserialization by disallowing certain Java classes or packages. How do […]
We are pleased to announce that we have released the updates for the following ColdFusion versions: ColdFusion (2023 release) Update 3 ColdFusion (2021 release) Update 9 ColdFusion (2018 release) Update 19 In these updates, we’ve fixed a few critical security bugs mentioned in the security bulletin, APSB23-47. For more information, see the tech notes below: ColdFusion (2023 release) Update 3 ColdFusion (2021 release) Update 9 ColdFusion (2018 release) Update 19 Please update your ColdFusion versions and provide us with your […]
We are pleased to announce that we have released the updates for the following ColdFusion versions: ColdFusion (2023 release) Update 2 ColdFusion (2021 release) Update 8 ColdFusion (2018 release) Update 18 In these updates, we’ve fixed a few security bugs mentioned in the security bulletin, APSB23-41. For more information, see the tech notes below: ColdFusion (2023 release) Update 2 ColdFusion (2021 release) Update 8 ColdFusion (2018 release) Update 18 Please update your ColdFusion versions and provide us with your valuable feedback.
23 Nov
10AM Pacific
Online