#CVE2023-26360

Adobe ColdFusion Vulnerability Exploited in Attacks on US Government Agency

December 6, 2023 by Xynik

December 6, 2023 at 08:00AM A US government agency was attacked through a flaw in Adobe ColdFusion, identified as CVE-2023-26360, as reported by SecurityWeek. Key Takeaway from Meeting Notes: – An Adobe ColdFusion vulnerability with the identifier CVE-2023-26360 was exploited in cyberattacks targeting a US government agency. – The information regarding the exploitation of this … Read more

Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers

December 6, 2023 by Xynik

December 6, 2023 at 06:00AM CISA warns of a high-severity Adobe ColdFusion vulnerability (CVE-2023-26360) being actively exploited, affecting outdated versions of the software. Attackers used it for unauthorized access and code execution on government servers, installing malware, and conducting reconnaissance. Updated ColdFusion versions have fixed the flaw. Meeting Takeaways: 1. The U.S. Cybersecurity and Infrastructure … Read more