PC World

Attackers exploited ColdFusion vulnerability to install Microsoft IIS malware

Attackers exploited a vulnerability in Adobe ColdFusion to install data-stealing malware that works as a module for Microsoft’s Internet Information Services (IIS) Web server software. Researchers ...
techtimes

Adobe ColdFusion Experiences Zero-Day Bug Exploit Per CISA Warning

On Monday, the Cybersecurity and Infrastructure Security Agency (CISA) warned about a critical arbitrary code execution vulnerability (CVE-2023-26360) in Adobe ColdFusion 2018 and 2021. Risk of ...
IT News For Australia Business

Patch now against exploited ColdFusion zero-day

Users of the Adobe's ColdFusion and its open source alternative Lucee web application platforms should patch against an exploited vulnerability that allows attackers to run arbitrary code on servers ...