CVE-2021-21087: Adobe ColdFusion Remote Code Execution Vulnerability Alert
Vulnerability Detail
An unauthorized attacker sends a carefully constructed malicious request to the ColdFusion server, executes arbitrary code on the remote server, and controls the remote server.
Affected version
- ColdFusion 2016: Update 16 and earlier version
- ColdFusion 2018: Update 10 and earlier versions
- ColdFusion 2021: Version 2021.0.0.323925