Number: AV16-135
Date: 31 August 2016
Purpose
The purpose of this advisory is to bring attention to the recently released security updates for Adobe ColdFusion.
Assessment
Adobe has released Security Bulletin APSB16-30 to address critical vulnerabilities that could lead to information disclosure.
Affected Versions:
- ColdFusion 10
- ColdFusion 11
CVE Reference: CVE-2016-4264
Suggested Action
CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.
References:
https://helpx.adobe.com/security/products/coldfusion/apsb16-30.html