![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiXc79wyc7QrZIj1o1Og30eBY0k9d6Y7yzZShhV5ZseA7MtMlWtR5F070CPRBVasoUABzepnegbAw9FMoMRXz7DsDg2B9MzODEf4YG75y1mvzisw-kBDapS6SqlSTItoCy6JDzE13umyUK3gbVQp_IXIXim0fS9WzaZg1eOpgkKt6ZTY1lcn9vdLPtjFUpU/s1600/lock.jpg)
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned of active exploitation of a high-severity Adobe ColdFusion vulnerability by unidentified threat actors to gain initial access to government servers.
“The vulnerability in ColdFusion (CVE-2023-26360) presents as an improper access control issue and exploitation of this CVE can result in arbitrary code execution,”
Source:: The Hackers News