Adobe has published their monthly Patch Tuesday updates for the month of June 2019. These updates includes fixes for vulnerabilities in Adobe ColdFusion, Adobe Campaign, and Adobe Flash Player.
Each of the three programs included a fix for a Critical arbitrary code execution vulnerability and users are advised to install the updates as soon as possible.
Adobe Security Updates Summary:
APSB19-27 Security updates available for Adobe ColdFusion
Adobe has released an update for ColdFusion that fixes three critical vulnerabilities that could allow arbitrary code execution on vulnerable servers.
| Vulnerability Category | Vulnerability Impact | Severity | CVE Numbers |
|---|---|---|---|
| File extension blacklist bypass | Arbitrary code execution | Critical (see note below) | CVE-2019-7838 |
| Command Injection |
Source link
