ZDNet

Adobe releases out-of-band update to patch ColdFusion zero-day

Adobe has released today an emergency out-of-band update for its ColdFusion development platform that patches a zero-day vulnerability that was being exploited in the wild. In its security bulletin ...
Threat Post

Adobe Patches Critical ColdFusion Vulnerability With Active Exploit

Adobe has hurried out a patch for a critical arbitrary code execution vulnerability in its ColdFusion product. Adobe has issued an emergency patch for a critical vulnerability in its ColdFusion ...
Bleeping Computer

CISA warns of Adobe ColdFusion bug exploited as a zero-day

CISA has added a critical vulnerability impacting Adobe ColdFusion versions 2021 and 2018 to its catalog of security bugs exploited in the wild. This critical arbitrary code execution flaw ...
Bleeping Computer

Update ColdFusion Now, Critical Zero-Day Bug Exploited in the Wild

Adobe today released emergency updates that fix a critical vulnerability for the ColdFusion web app development platform. The bug can lead to arbitrary code execution and has been exploited in the ...
Ars Technica

Exploited 0-days, an incomplete fix, and a botched disclosure: Infosec snafu reigns

Organizations big and small are once again scrambling to patch critical vulnerabilities that are already under active exploitation and cause the kind of breaches coveted by ransomware actors and ...
Infosecurity-magazine.com

Adobe ColdFusion Critical Vulnerabilities Exploited Despite Patches

Fortinet has observed significant threat exploitation targeting Adobe ColdFusion, a web development computing platform. Since those updates, however, Fortinet’s FortiGuard Labs IPS telemetry data has ...