Adobe recently released a series of 11 security patches, including six rated critical. The 2018 and 2016 versions of ColdFusion, as well as version 11, have critical vulnerabilities that could be exploited to enable arbitrary code execution. No details were given on whether any of the six critical vulnerabilities have been exploited in the wild, so its safe to speculate they were all part of a responsible disclosure program. Affected users should start applying the updates as soon as possible, Adobe advises users to install the appropriate JDK for the patches.”]