Threat Post

Adobe Fixes Critical ColdFusion Flaw in Emergency Update

Attackers can leverage the critical Adobe ColdFusion flaw to launch arbitrary code execution attacks. In an unscheduled security update, Adobe is warning of a critical security flaw in its ColdFusion ...
Threat Post

Adobe Unscheduled Update Fixes Critical ColdFusion Flaws

Overall, Adobe released three patches – one for an “important” flaw and two for critical flaws –in the 2016 and 2018 versions of ColdFusion. Adobe has issued an unscheduled security update that fixes ...
ZDNet

Adobe ColdFusion servers under attack from APT group

A nation-state cyber-espionage group is actively hacking into Adobe ColdFusion servers and planting backdoors for future operations, Volexity researchers have told ZDNet. The attacks have been taking ...
Bleeping Computer

CISA warns of Adobe ColdFusion bug exploited as a zero-day

CISA has added a critical vulnerability impacting Adobe ColdFusion versions 2021 and 2018 to its catalog of security bugs exploited in the wild. This critical arbitrary code execution flaw ...
Bleeping Computer

Critical code execution vulnerability fixed in Adobe ColdFusion

Adobe has released out-of-band security updates to address a critical vulnerability impacting ColdFusion versions 2021, 2016, and 2018. Today's emergency updates patch an arbitrary code execution ...