Tag: Adobe
-
September 2023 Patch Tuesday forecast: Important Federal government news
Microsoft addressed 33 CVEs in Windows 10 and 11 last month after nearly 3x that number in July. But despite the lull in CVEs, they did …
-
Hackers Exploit Adobe ColdFusion Vulnerabilities to Deploy Malware
Remote attackers can exploit pre-authentication RCE vulnerabilities in Adobe ColdFusion 2021 to seize control of affected systems. Adobe …
-
Adobe Patches Critical Deserialization Vulnerability, but Exploits Persist
CISA has added a vulnerability — cataloged as CVE-2023-26359 — to the Known Exploited Vulnerabilities Catalog with a CVSS score of 9.8 …
-
Contributor spotlight: A roundup of this week’s startup discussions
At e27, our mission is to nurture inventive thinkers and offer a space where exceptional individuals can disseminate their distinct …
-
August 2023 Patch Tuesday forecast: Software security improvements
The continued onslaught of phishing attacks, ransomware deployment, and other exploitation is forcing the community to pay closer attention …
-
Adobe out-of-band update addresses an actively exploited ColdFusion zero-day
Adobe released an emergency update to address critical vulnerabilities in ColdFusion, including an actively exploited zero-day. Adobe …
-
Adobe Rolls Out New Patches for Actively Exploited ColdFusion Vulnerability
Adobe has released a fresh round of updates to address an incomplete fix for a recently disclosed ColdFusion flaw that has come under …
-
Hackers Actively Exploit Multiple Adobe ColdFusion Vulnerabilities
The CVE-2023-29300 patch blocks specific class deserialization in ColdFusion’s WDDX data, preventing gadget-based attacks without …
-
Exploited 0-days, an incomplete fix, and a botched disclosure: Infosec snafu reigns
Organizations big and small are once again scrambling to patch critical vulnerabilities that are already under active exploitation and …
-
Adobe ColdFusion vulnerabilities exploited to deliver web shells (CVE-2023-29298, CVE-2023-38203)
Attackers are exploiting two Adobe ColdFusion vulnerabilities (CVE-2023-29298, CVE-2023-38203) to breach servers and install web shells to …
-
Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks
At least two recently disclosed Adobe ColdFusion vulnerabilities appear to have been exploited in the wild, including a flaw that security …
-
Adobe warns customers of a critical ColdFusion RCE exploited in attacks
Adobe is warning customers of a critical ColdFusion pre-authentication RCE bug, tracked as CVE-2023-29300, which is actively exploited. …
●●●