ColdFusion must set an organization defined maximum number of cached templates.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-279089 | APAS-CF-000830 | SV-279089r1171580_rule | CCI-002385 | medium |
| Description | ||||
| Setting an appropriate maximum number of cached templates is crucial to balance server performance and resource usage. If the limit is set too low, it can lead to frequent cache misses, causing the server to regenerate templates more often, which can degrade performance. Conversely, if the limit is set too high, it can consume excessive memory, leading to resource exhaustion and potential denial-of-service (DoS) attacks. By configuring a balanced limit, the server can efficiently manage cached templates, ensuring optimal performance and availability. Satisfies: SRG-APP-000435-AS-000163, SRG-APP-000516-AS-000237 | ||||
| STIG | Date | |||
| Adobe ColdFusion Security Technical Implementation Guide | 2025-12-19 | |||
Details
Check Text (C-279089r1171580_chk)
Verify Caching settings.
From the Admin Console Landing Screen, navigate to Server Settings >> Caching.
If the "Maximum number of cached templates" is not set to a number between 256 and 4096, this is a finding.
If the trusted cache is not enabled, this is a finding.
Fix Text (F-83542r1171040_fix)
Configure Caching settings.
1. From the Admin Console Landing Screen, navigate to Server Settings >> Caching.
2. Set "Maximum number of cached templates" to a number between 256 and 4096.
3. Check the checkbox for "Trusted Cache".
4. Select "Submit Changes".