Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers
Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers
06 December 2023
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned of active exploitation of a high-severity Adobe ColdFusion vulnerability by unidentified threat actors to gain initial access to government servers.
"The vulnerability in ColdFusion (CVE-2023-26360) presents as an improper access control issue and exploitation of this CVE can result in arbitrary code execution,"