Adobe Patches 11 Critical ColdFusion Flaws Amid 30 Total Vulnerabilities Discovered

2025-04-09 03:12

Adobe has released security updates to fix a fresh set of security flaws, including multiple critical-severity bugs in ColdFusion versions 2025, 2023 and 2021 that could result in arbitrary file read and code execution. Of the 30 flaws in the product, 11 are rated Critical in severity - CVE-2025-24446 (CVSS score: 9.1) - An improper input validation vulnerability that could result in an

News URL

https://thehackernews.com/2025/04/adobe-patches-11-critical-coldfusion.html

#adobe #coldfusion #critical #vulnerabilities #CVE-2025-24446

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2025-04-08	CVE-2025-24446	ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. network low complexity CWE-20 critical	9.1

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Adobe		104	49	865	1706	629	3249

News URL

Related news

Related Vulnerability

Related vendor