On April 25th, Adobe released patches for their ColdFusion Products (10, 11 and 2016).
Security Update: Hotfixes available for ColdFusion
Priority: 2
Sources:
Adobe PSIRT Blog
More information is available from Kaspersky Lab's blog:
Coldfusion Hotfix Resolves XSS Java Deserialization Bugs
Adobe's PSIRT blog is a good source to check frequently if you use any of their products, just FYI.
Security Update: Hotfixes available for ColdFusion
Priority: 2
Sources:
Adobe PSIRT Blog
More information is available from Kaspersky Lab's blog:
Coldfusion Hotfix Resolves XSS Java Deserialization Bugs
Adobe's PSIRT blog is a good source to check frequently if you use any of their products, just FYI.
