cfimage related activities utilize the /lucee/graph.cfm file. We are getting lots of direct bot access to non-existent png’s created by the request (captcha images that are only temporary) that trigger a 500 errors. In troubleshooting this we noticed that there is no or limited exception handled on this file itself.
You can easily reproduce a server error by going to a lucee site and using that path
e.g.
https://lucee.org/lucee/graph.cfm
Thanks,
Andrew