CVE-2023-26360 is a new CVE that can be trouble if you are running under the programming language Cold Fusion.
The security issue allows executing arbitrary code on servers running Adobe ColdFusion 2018 Update 15 and older, and 2021 Update 5 and earlier. It was exploited as a zero day before Adobe fixed it in mid-March by releasing ColdFusion 2018 Update 16 and 2021 Update 6.
The problem is, that this started in 2021 and is still being exploited with servers in the government that is still not patched from this.
The good news is that my least favorite program, Microsoft Defender was able to detect this and not allow the execution of the exploit, but running outdated software is never the answer.
CISA says that the threat actors leveraged the vulnerability to drop malware using HTTP POST commands to the directory path associated with ColdFusion.
The attackers also did some other activity like installing a web shell, conducted process innumeration and more.
The full Bleeping Computer article is titled Hackers breach US govt agencies using Adobe ColdFusion exploit for those that need to read it.
Should we be surprised about this at this day in age where software is not being updated as it should? Sound off in the comments.
Discover more from Jared's Technology podcast network
Subscribe to get the latest posts sent to your email.