{"uuid": "69c2a83b-3106-41dc-be2a-cb6f6f4ad6bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26360", "type": "exploited", "source": "https://t.me/KomunitiSiber/1173", "content": "Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers\nhttps://thehackernews.com/2023/12/hackers-exploited-coldfusion.html\n\nThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned of active exploitation of a\u00a0high-severity Adobe ColdFusion vulnerability\u00a0by unidentified threat actors to gain initial access to government servers.\n\"The vulnerability in ColdFusion (CVE-2023-26360) presents as an improper access control issue and exploitation of this CVE can result in arbitrary code execution,\"", "creation_timestamp": "2023-12-06T13:48:27.000000Z"}