< BACK TO BLOG

July 17, 2023
by Andres Ramos

CVE-2023-26360: RCE Vulnerability in Adobe ColdFusion

Summary

In April 2023, Adobe fixed a high severity deserialization vulnerability (CVE-2023-26360, CVSS 8.6) in Adobe ColdFusion. Adobe ColdFusion is a web application development platform that uses the ColdFusion Markup Language (CFML) for server-side scripting. A threat actor can exploit this remote deserialization of untrusted data vulnerability to achieve remote code execution (RCE) on a target system. Adobe has stated they are aware that this vulnerability has been exploited in limited attacks.

On December 5, 2023, CISA published an advisory disclosing that between June and July 2023 this vulnerability was exploited to compromise at least two public-facing servers belonging to a Federal Civilian Executive Branch (FCEB) agency.

Recommendation for CVE-2023-26360

Update Adobe ColdFusion to Fixed Version

Arctic Wolf strongly recommends upgrading Adobe ColdFusion to the latest fixed version.

Product	Affected Version	Fixed Version
Adobe ColdFusion 2018	Update 15 and earlier versions	Update 16
Adobe ColdFusion 2021	Update 5 and earlier versions	Update 6

Please follow your organization’s patching and testing guidelines to avoid operational impact.

References

Andres Ramos

Andres Ramos is a Threat Intelligence Researcher at Arctic Wolf with a strong background in tracking emerging threats and producing actionable intelligence for both technical and non-technical stakeholders. He has a diverse background encompassing various domains of cyber security, holds a degree in Cybersecurity Engineering, and is a CISSP.

Continue Reading

The Top 11 Legal Industry Cyber Attacks

© 2024 Arctic Wolf Networks Inc. All Rights Reserved.
Privacy Notice	Terms of Use	Cookie Policy	Accessibility Statement	Information Security	Sustainability Statement	Cookies Settings

SOLUTIONS

INDUSTRIES

Quickly detect, respond, and recover from advanced threats.

Detect and respond to advanced threats targeting your cloud infrastructure and applications.

Discover, assess, and harden your environment against digital risks.

Explore, harden, and simplify your cloud environment against misconfiguration vulnerabilities.

Engage and prepare employees to recognize and neutralize social engineering attacks.

Recover quickly from cyber attacks and breaches, from threat containment to business restoration.

HOW IT WORKS

Delivering security operations outcomes.

Collect, enrich, analyze.

Ecosystem integrations and technology partnerships.

Tailored security expertise and guided risk mitigation.

Security experts proactively protecting you 24×7.

Meet some of the security experts working alongside you and your team.

TRENDING RESOURCES

Understanding ransomware — from its origins to its impacts to the TTPs that allow ransomware gangs to exploit victim organizations and make off with millions in ransom payments and extortion fees.

The elite security researchers, data scientists, and security developers of Arctic Wolf Labs share forward-thinking insights along with practical guidance you can apply to protect your organization.

Learn how our Concierge Security® and Triage Security Teams help end cyber risk.

SECURITY BULLETINS

CVE-2024-20353 and CVE-2024-20359: Cisco ASA and FTD Vulnerabilities Exploited by State-Sponsored Threat Actor in Espionage Campaign “ArcaneDoor”

Cisco Duo Third-Party Compromise

Critical Authentication Bypass Vulnerability in Delinea Secret Server Disclosed Along With PoC

COMPANY

CVE-2023-26360: RCE Vulnerability in Adobe ColdFusion

Summary

Recommendation for CVE-2023-26360

Update Adobe ColdFusion to Fixed Version

References

Andres Ramos

Continue Reading

Arctic Wolf Networks 8939 Columbine Rd, Suite 150 Eden Prairie, MN 55347

1.888.272.8429

© 2024 Arctic Wolf Networks Inc. All Rights Reserved.

Arctic Wolf Networks
8939 Columbine Rd, Suite 150
Eden Prairie, MN 55347