Home > Cyber News > CVE-2023-26360: Adobe ColdFusion Flaw Exploited in the Wild
CYBER NEWS

CVE-2023-26360: Adobe ColdFusion Flaw Exploited in the Wild

by   |  Last Update:  |  0 Comments  

On March 15 2023, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a security vulnerability affecting Adobe ColdFusion to its Known Exploited Vulnerabilities catalog, based on evidence of active exploitation.

This vulnerability, labeled CVE-2023-26360 (CVSS score: 8.6), is classified as a critical flaw, as it could enable threat actors to gain remote code execution. CISA described the vulnerability as an improper access control that allows for remote code execution.

CVE-2023-26360- Adobe ColdFusion Flaw Exploited in the Wild

CVE-2023-26360: Technical Overview

This vulnerability, CVE-2023-26360, is an improper access control issue that impacts ColdFusion 2021 version 5 and earlier, as well as ColdFusion 2018 version 15 and earlier. By exploiting this vulnerability, unauthenticated attackers can gain arbitrary code execution on a remote machine.

It is important to be aware that CVE-2023-26360 affects ColdFusion 2016 and ColdFusion 11 installations. However, they are no longer supported since they reached end-of-life (EoL). Although the details of the attacks are still unclear, Adobe has stated that they are aware of the vulnerability being used to carry out “limited attacks” in the wild.




Adobe released a patch for CVE-2023-26360 on March 14th, 2023 in response to the vulnerability.

Previous Adobe ColdFusion Flaws Used in Attacks

In 2021, Sophos reported that cybercriminals took advantage of an 11-year-old Adobe ColdFusion 9 vulnerability to gain remote control of servers. The goal of the attack was to deploy the Cring ransomware and infect other systems in the targeted network. The attack partially damaged the ColdFusion server but Sophos managed to extract evidence such as logs and files from the machine. Additionally, other machines on the network were completely destroyed by the ransomware.

Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim

More Posts

Follow Me:
Twitter

Related posts:
  1. Ancient ColdFusion Flaw (CVE-2010-2861) Exploited to Drop Cring Ransomware Cybercriminals recently exploited an old vulnerability in an 11-year-old installation...
  2. Adobe Patches 112 Vulnerabilities in Latest Patch Package (CVE-2018-5007) Adobe has released the latest patch package that addresses a...
  3. CVE-2018-15961: Adobe ColdFusion Vulnerability Exploited By Hackers Computer hackers have been found to use the Adobe ColdFusion...
  4. January 2023 Patch Tuesday Fixes Actively Exploited CVE-2023-21674 The first Patch Tuesday fixes shipped by Microsoft for 2023...
  5. CVE-2018-15982: Adobe Flash Player Critical Flaw Detected, Patch Now! The Adobe Flash Player has been found to contain a...
  6. Google, Microsoft Bugs Top the 20 Most Prevalent Enterprise Vulnerabilities Cybersecurity firm Tenable just released their Vulnerability Intelligence Report which...
  7. Microsoft Bugs CVE-2019-0803, CVE-2019-0859 Exploited in the Wild April 2019 Patch Tuesday is here, consisting of fixes for...
  8. Dell BIOS Vulnerabilities Could Cause Remote Code Execution (CVE-2022-24415) Security researchers reported several new vulnerabilities in Dell BIOS that...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree