Patch/Configuration Management, Vulnerability Management

Adobe patches two critical issues with Cold Fusion

Doug OlenickSeptember 24, 2019

Adobe today released an out-of-band security update fixing two critical issues for Cold Fusion 2018 and 2016.

The two critical-rated issues are CVE-2019-8073 and CVE-2019-8074. The former allows arbitrary code execution if exploited and the latter leads to an access control bypass.

Adobe also patched an important-rated vulnerability, CVE-2019-8072, that could lead to information disclosure if not patched.

Adobe is not aware of any exploits in the wild at this time.

Doug Olenick

(Credit: monticellllo – stock.adobe.com)

Network Security

Fortinet patches FortiClientLinux critical RCE vulnerability

Laura FrenchApril 10, 2024

The vulnerability is due to a “dangerous nodejs configuration” and has a CVSS score of 9.4.

Source PC website developer. Real software development code. JavaScript code in text editor. Computer interface. Abstract technology background. Java Software engineer concept.

Vulnerability Management

Command injection attacks likely with critical Rust vulnerability

SC StaffApril 10, 2024

Windows devices could be targeted with command injection attacks exploiting the maximum severity Rust standard library vulnerability, tracked as CVE-2024-24576, The Hacker News reports.

Network Security

Microsoft fixes a record 147 bugs in April release of Patch Tuesday

Simon HenderyApril 10, 2024

This month’s bumper crop of patches includes two Microsoft didn’t initially acknowledge were being exploited in the wild.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Adobe patches two critical issues with Cold Fusion

Related

Fortinet patches FortiClientLinux critical RCE vulnerability

Command injection attacks likely with critical Rust vulnerability

Microsoft fixes a record 147 bugs in April release of Patch Tuesday

Get daily email updates