Lucene search

CVE-2023-26360

🗓️ 23 Mar 2023 00:00:00Reported by AttackerKBType

A deserialization vulnerability in Adobe ColdFusion 2021 & 2018 allows arbitrary remote code execution

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 52
AttackerKB	CVE-2023-26359	14 Mar 202300:00	–	attackerkb
AttackerKB	CVE-2023-29298	12 Jul 202300:00	–	attackerkb
The Hacker News	Critical Adobe ColdFusion Flaw Added to CISA's Exploited Vulnerability Catalog	22 Aug 202303:36	–	thn
The Hacker News	CISA Issues Urgent Warning: Adobe ColdFusion Vulnerability Exploited in the Wild	16 Mar 202304:47	–	thn
The Hacker News	Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers	6 Dec 202310:10	–	thn
The Hacker News	Chinese-Speaking Hacker Group Targets Human Rights Studies in Middle East	5 Sep 202416:19	–	thn
Rapid7 Blog	Rapid7 Observed Exploitation of Adobe ColdFusion	21 Mar 202315:10	–	rapid7blog
Rapid7 Blog	CVE-2023-29298: Adobe ColdFusion Access Control Bypass	11 Jul 202315:30	–	rapid7blog
Rapid7 Blog	Metasploit Weekly Wrap-Up	5 May 202318:48	–	rapid7blog
Malwarebytes	Adobe ColdFusion vulnerability exploited in the wild	23 Aug 202312:30	–	malwarebytes

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
helpx	www.helpx.adobe.com/security/products/coldfusion/apsb23-25.html
carehart	www.carehart.org/blog/2023/3/17/coldfusion_march_2023_emergency_update/
packetstormsecurity	www.packetstormsecurity.com/files/172079/Adobe-ColdFusion-Unauthenticated-Remote-Code-Execution.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Mar 2023 00:00Current

8.8High risk

Vulners AI Score8.8

CVSS39.8

EPSS0.94326