The following ColdFusion updates are now available for download. These updates address a common XXE vulnerability in BlazeDS. For details refer the security bulletin hyperlinks in the sections below.
Users who are using LCDS with ColdFusion, should refer this technote, for updating their LCDS installation.
ColdFusion 11 Update 6
This Update addresses a vulnerability mentioned in the security bulletin APSB15-21. This update is cumulative and includes fixes from previous ColdFusion 11 updates.
For details, refer this technote.
ColdFusion 10 Update 17
This Update addresses a vulnerability mentioned in the security bulletin APSB15-21. This update is cumulative and includes fixes from previous ColdFusion 10 updates.
For details, refer this technote.
