Adobe ColdFusion Any File Read Vulnerability (CVE-2024-53961)

dezembro 26, 2024
Overview Recently, NSFOCUS CERT detected that Adobe issued a security announcement and fixed any file read vulnerability in Adobe ColdFusion (CVE-2024-53961). Due to improper restrictions on pathnames in Adobe ColdFusion, unauthenticated attackers can bypass the application’s restrictions to read files or directories outside of the restricted directory. As a result, sensitive information may be disclosed […]
Adobe ColdFusion Remote Code Execution Vulnerability (CVE-2021-21087) Threat Alert

abril 8, 2021
Vulnerability Description On March 23, 2021, NSFOCUS detected that Adobe released a security bulletin fixing a code execution vulnerability (CVE-2021-21087). Due to improper sanitization of user inputs, unauthenticated attackers could execute arbitrary code on the target server by sending a crafted, malicious request to the ColdFusion server. Adobe ColdFusion is a rapid application development platform. […]
Adobe Releases May’s Security Updates Threat Alert

maio 26, 2020
Overview
On May 12, 2020, local time, Adobe officially released July’s security updates to fix multiple vulnerabilities in its various products, including Adobe DNG Software Development Kit (SDK) and Adobe Acrobat and Reader.
For details about the security update, visit the following link:
Adobe Out-of-Band Patch Tackling Critical Vulnerabilities in Multiple Products Threat Alert

maio 11, 2020
Overview
On April 28, local time, Adobe released an out-of-band patch tackling multiple vulnerabilities in Magento, Adobe Illustrator, and Adobe Bridge.
For details about the security bulletins and advisories, visit the following link:
Adobe Security Advisory for December Security Updates

dezembro 29, 2019
Overview
On December 11, local time, Adobe officially released a December security update that fixes multiple vulnerabilities in Adobe’s many products, including Adobe Photoshop CC, Adobe Acrobat and Reader, Brackets, and Adobe ColdFusion.
For details, visit the following link:
Adobe Security Bulletins for November 2019 Security Updates Threat Alert

novembro 26, 2019
Overview
On November 12, local time, Adobe officially released the November security update, which fixes multiple vulnerabilities in Adobe’s various products, including Adobe Bridge CC, Adobe Media Encoder, Adobe Illustrator CC, and Adobe Animate CC. (mais…)
Adobe Releases May’s Security Updates Threat Alert

maio 30, 2019
Overview
On May 14, 2019, local time, Adobe officially released May’s security updates to fix multiple vulnerabilities in its various products, including Adobe Flash Player, Adobe Acrobat and Reader, and Media Encoder. (mais…)
Adobe Security Bulletin for December 2018 Security Updates

dezembro 29, 2018