Adobe has released today an emergency out-of-band update for its ColdFusion development platform that patches a zero-day vulnerability that was being exploited in the wild.

CISA has added a critical vulnerability impacting Adobe ColdFusion versions 2021 and 2018 to its catalog of security bugs exploited in the wild.

Exploited 0-days, an incomplete fix, and a botched disclosure: Infosec snafu reigns The exploited code-execution flaws are the kind coveted by ransomware and nation-state hackers.

Adobe has released out-of-band security updates to address a critical ColdFusion vulnerability with proof-of-concept exploit code.

ColdFusion hack used to steal hosting provider’s customer data Linode hit by possible zero-day exploit patched by Adobe on April 9.