Lucene search
K

7 matches found

Malwarebytes
Malwarebytes
added 2023/08/23 12:30 p.m.82 views

Adobe ColdFusion vulnerability exploited in the wild

The Cybersecurity and Infrastructure Security Agency CISA has added a critical Adobe ColdFusion vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. This means that Federal Civilian Executive Branch FCEB agencies need to remediate this...

7.5CVSS7.9AI score0.97339EPSS
Exploits13
The Hacker News
The Hacker News
added 2023/08/22 3:36 a.m.71 views

Critical Adobe ColdFusion Flaw Added to CISA's Exploited Vulnerability Catalog

The U.S. Cybersecurity and Infrastructure Security Agency CISA has added a critical security flaw in Adobe ColdFusion to its Known Exploited Vulnerabilities KEV catalog, based on evidence of active exploitation. The vulnerability, cataloged as CVE-2023-26359 CVSS score: 9.8, relates to a...

9.8CVSS7.5AI score0.97339EPSS
Exploits13
VulnCheck KEV
VulnCheck KEV
added 2023/08/21 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-26359

Adobe ColdFusion contains a deserialization of untrusted data vulnerability that could result in code execution in the context of the current user...

9.8CVSS7.8AI score0.17937EPSS
Exploits1References1
OSV
OSV
added 2023/03/23 8:15 p.m.5 views

CVE-2023-26359

Adobe ColdFusion versions 2018 Update 15 and earlier and 2021 Update 5 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction...

9.8CVSS8AI score0.17937EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/03/23 12:0 a.m.12 views

CVE-2023-26359 Adobe ColdFusion Deserialization of Untrusted Data Arbitrary code execution

Adobe ColdFusion versions 2018 Update 15 and earlier and 2021 Update 5 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction...

9.8CVSS7.4AI score0.17937EPSS
Exploits1References1
Circl
Circl
added 2023/03/15 7:54 a.m.12 views

CVE-2023-26359

creationtimestamp| type| source ---|---|--- 2023-03-15 07:54:44+00:00| exploited| https://t.me/kasperskyb2b/516 2023-03-23 23:36:57+00:00| seen| https://t.me/cibsecurity/60620 2023-04-04 06:27:25+00:00| published-proof-of-concept| https://t.me/ptswarm/169 2023-04-04 15:51:44+00:00| seen|...

9.8CVSS7.5AI score0.17937EPSS
Exploits1References13
ATTACKERKB
ATTACKERKB
added 2023/03/14 12:0 a.m.37 views

CVE-2023-26359

Adobe ColdFusion versions 2018 Update 15 and earlier and 2021 Update 5 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Rece...

9.8CVSS8.7AI score0.97339EPSS
In wildExploits13References2
Rows per page
Query Builder