Adobe patches critical vulnerability in ColdFusion

Doug OlenickMarch 4, 2019

Adobe today released a critical security update for three ColdFusion products.

The flaw, CVE-2019-7816,a file upload restriction bypass if exploited could lead to arbitrary code execution in the context of the running ColdFusion service. The products affected are ColdFusion 2018, ColdFusion 2016 and ColdFusion 11.

The vulnerability has been spotted in the wild, Adobereported.

Doug Olenick

A young woman with a smartphone walks past a billboard advertisement for YouTube.

Threat intelligence

Majority of YouTube accounts Google terminated in Q3 linked to China

Steve ZurierAugust 29, 2022

While some of the 1,546 YouTube channels terminated by Google emanated from Russia, the vast majority blocked were linked to China.

Content

DevSecOps Scanning Challenges & Tips

Bill BrennerOctober 26, 2021

There are many ways to do DevSecOps, and each organization — each security team, even — uses a different approach. Questions such as how many environments you have and the frequency of deployment of those environments are important in understanding how to integrate a security scanner into your DevSecOps machinery. The ultimate goal is speed […]

Content

It Should Be ‘Cybersecurity Culture Month’

Bill BrennerOctober 19, 2021

It’s Cybersecurity Awareness Month, but security awareness is about much more than just dedicating a month to a few activities. Security awareness is a journey, requiring motivation along the way. And culture. Especially culture.That’s the point Proofpoint Cybersecurity Evangelist Brian Reed drove home in a recent appearance on Business Security Weekly.“If your security awareness program […]

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Adobe patches critical vulnerability in ColdFusion

Related

Majority of YouTube accounts Google terminated in Q3 linked to China

DevSecOps Scanning Challenges & Tips

It Should Be ‘Cybersecurity Culture Month’

Get daily email updates