← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-26360 — Actively Exploited: ColdFusion (Adobe)

Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for remote code execution.

CVE IDCVE-2023-26360
VendorAdobe
ProductColdFusion
Vulnerability nameAdobe ColdFusion Deserialization of Untrusted Data Vulnerability
Date added2023-03-15
Remediation due2023-04-05
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionAdobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →