Exploit for Improper Access Control in Adobe Coldfusion

🗓️ 14 May 2024 11:35:22Type

Critical Adobe ColdFusion vulnerabilities allow unauthorized remote code execution without user interaction. Cybersecurity advisory by CISA

Reporter	Title	Published	Views	Family All 57
Adobe	APSB23-25 : Security update available for Adobe ColdFusion	14 Mar 202300:00	–	adobe
Tenable Nessus	Adobe ColdFusion < 2018.x < 2018 Update 16 / 2021.x < 2021 Update 6 Multiple Vulnerabilities (APSB23-25)	16 Mar 202300:00	–	nessus
AttackerKB	CVE-2023-26359	14 Mar 202300:00	–	attackerkb
AttackerKB	CVE-2023-26360	23 Mar 202300:00	–	attackerkb
AttackerKB	CVE-2023-29298	12 Jul 202300:00	–	attackerkb
The Hacker News	Critical Adobe ColdFusion Flaw Added to CISA's Exploited Vulnerability Catalog	22 Aug 202303:36	–	thn
The Hacker News	CISA Issues Urgent Warning: Adobe ColdFusion Vulnerability Exploited in the Wild	16 Mar 202304:47	–	thn
The Hacker News	Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers	6 Dec 202310:10	–	thn
The Hacker News	Chinese-Speaking Hacker Group Targets Human Rights Studies in Middle East	5 Sep 202416:19	–	thn
Rapid7 Blog	Rapid7 Observed Exploitation of Adobe ColdFusion	21 Mar 202315:10	–	rapid7blog

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 May 2024 11:22Current

8.7High risk

Vulners AI Score8.7

CVSS39.8

EPSS0.96609

SSVC