virus logo Outbreak Alert

Adobe ColdFusion Deserialization of Untrusted Data Vulnerabilities

Released: Aug 21, 2023

Updated: Aug 21, 2023

Download PDF »

Adobe ColdFusion Code Execution Vulnerability Tags

High Severity

Adobe Vendor

Subscribe

Exploited in the wild and actively targeted

FortiGuard Labs continue to see cyber-attacks targeting to exploit the ColdFusion vulnerability CVE-2023-26360. Blocking over multiple hundreds of attacks over the last weeks. Learn More »

Common Vulnerabilities and Exposures



Background

Adobe ColdFusion is a commercial rapid web-application and mobile applications development platform. Adobe ColdFusion is affected by Deserialization of Untrusted Data vulnerabilities (CVE-2023-26359, CVE-2023-26360) that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require any user interaction.

Click here to analyze the

Real-Time Threat Map

Latest Development

Recent news and incidents related to cybersecurity threats encompassing various events such as data breaches, cyber-attacks, security incidents, and vulnerabilities discovered.


March 14, 2023: Adobe released the advisory and confirmed exploitation. "Adobe is aware that CVE-2023-26360 has been exploited in the wild in very limited attacks targeting Adobe ColdFusion."
https://helpx.adobe.com/security/products/coldfusion/apsb23-25.html

March 15, 2023: FortiGuard Labs released Threat Signal (CVE-2023-26360)
https://www.fortiguard.com/threat-signal-report/5063

March 15, 2023: CISA added (CVE-2023-26360) to its known exploited catalog (KEV)


Aug 21, 2023: CISA added CVE-2023-26359 to its known exploited list


FortiGuard customers remain protected by the IPS signature added for CVE-2023-26360 back in April 2023. However, we continue to see targeted attacks to exploit the vulnerability. IPS devices blocked over multiple hundered of attacks over the last month. FortiGuard Labs is investigating IPS protection for CVE-2023-26359 and will update this report once there is any new update.

FortiGuard Labs strongly advises to see vendor advisory and apply patches to Adobe Coldfusion if not already done.
https://coldfusion.adobe.com/2023/03/released-coldfusion-2021-and-2018-march-2023-security-updates/

FortiGuard Cybersecurity Framework

Mitigate security threats and vulnerabilities by leveraging the range of FortiGuard Services.


PROTECT

  • AV

  • Vulnerability

  • AV (Pre-filter)

  • IPS

  • Web App Security

DETECT

  • Outbreak Detection

  • Threat Hunting

  • Content Update

RESPOND

  • Assisted Response Services

  • Automated Response

RECOVER

  • NOC/SOC Training

  • End-User Training

IDENTIFY

  • Attack Surface Hardening

  • Business Reputation

Threat Intelligence

Information gathered from analyzing ongoing cybersecurity events including threat actors, their tactics, techniques, and procedures (TTPs), indicators of compromise (IOCs), malware and related vulnerabilities.


References

Sources of information in support and relation to this Outbreak and vendor.


Bleeping Computer

Learn More »
Helpnet Security

Learn More »
About FortiGuard Outbreak Alerts

Learn More »