{"uuid": "51fb57b1-d957-4524-b987-359881dd9b5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26359", "type": "exploited", "source": "https://t.me/KomunitiSiber/685", "content": "Critical Adobe ColdFusion Flaw Added to CISA's Exploited Vulnerability Catalog\nhttps://thehackernews.com/2023/08/critical-adobe-coldfusion-flaw-added-to.html\n\nThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has\u00a0added\u00a0a critical security flaw in Adobe ColdFusion to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.\nThe vulnerability, cataloged as\u00a0CVE-2023-26359\u00a0(CVSS score: 9.8), relates to a deserialization flaw present in Adobe ColdFusion 2018 (Update 15 and earlier) and ColdFusion 2021 (", "creation_timestamp": "2023-08-22T07:19:28.000000Z"}