Adobe Releases Security Updates for ColdFusion

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Adobe has released security updates to address a critical vulnerability (CVE-2023-38203) affecting ColdFusion. An attacker can exploit some of these vulnerabilities to take control of an affected system.

CISA encourages users and administrators to review the Adobe security release APSB23-41 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts

We recently updated our anonymous product survey; we’d welcome your feedback.

Adobe Releases Security Updates for ColdFusion

Please share your thoughts

CISA Adds Three Known Exploited Vulnerabilities to Catalog

Cisco Releases Security Updates for Multiple Products

CISA Releases Seventeen Industrial Control Systems Advisories

Adobe Releases Security Updates for Multiple Products

Adobe Releases Security Updates for ColdFusion

Please share your thoughts

Related Advisories

CISA Adds Three Known Exploited Vulnerabilities to Catalog

Cisco Releases Security Updates for Multiple Products

CISA Releases Seventeen Industrial Control Systems Advisories

Adobe Releases Security Updates for Multiple Products