An unauthorized attacker sends a carefully constructed malicious request to the ColdFusion server, executes arbitrary code on the remote server, and controls the remote server.
- ColdFusion 2016: Update 16 and earlier version
- ColdFusion 2018: Update 10 and earlier versions
- ColdFusion 2021: Version 2021.0.0.323925
The post CVE-2021-21087: Adobe ColdFusion Remote Code Execution Vulnerability Alert appeared first on InfoTech News.