Adobe ColdFusion Unauthorized File Access via Dot Dot Slash

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Adobe ColdFusion Unauthorized File Access via Dot Dot Slash

CGA-whh4-hgx9-244x

Summary

Adobe ColdFusion allows attackers to access files on the server by using a malicious URL. This could lead to sensitive information being exposed or malicious files being executed. Adobe recommends updating to the latest version of ColdFusion to fix this issue.

What to do

Update chainguard ruby3.4-rails-7.2 to version 7.2.3.1-r1.

Affected software

Vendor	Product	Affected versions	Fix available
chainguard	ruby3.4-rails-7.2	<= 7.2.3.1-r1	7.2.3.1-r1

Original title

CGA-whh4-hgx9-244x

Published: 6 Apr 2026 · Updated: 6 Apr 2026 · First seen: 6 Apr 2026