Adobe Critical Update - 20250709003¶
Overview¶
Adobe has released security updates for ColdFusion to address critically rated vulnerabilities. Successful exploitation could result in a Security feature bypass.
What is vulnerable?¶
| Product(s) Affected | Version(s) | CVE | CVSS | Severity |
|---|---|---|---|---|
| ColdFusion | 2025 prior to Update 3 2023 prior to Update 15 2021 prior to Update 21 |
CVE-2025-49535 | 9.3 | High |
What has been observed?¶
The WA SOC has not received any reports of exploitation of this vulnerability on Western Australian Government networks at the time of writing.
Recommendation¶
The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframes (refer Patch Management):