Friday, March 24th, 2023 | Server
The most helpful links:
Charlie Arehart blog with fixes:
https://www.carehart.org/blog/2023/3/17/coldfusion_march_2023_emergency_update
Adobe Security Release:
https://helpx.adobe.com/security/products/acrobat/apsb23-01.html
CISA Gov updates:
https://www.cisa.gov/news-events/alerts/2023/03/15/cisa-adds-one-known-exploited-vulnerability-catalog
Rapid7 Observed Exploitations:
https://www.rapid7.com/blog/post/2023/03/21/etr-rapid7-observed-exploitation-of-adobe-coldfusion/
Hacker News report:
https://thehackernews.com/2023/03/cisa-issues-urgent-warning-adobe.html?m=1
Additional Observations:
https://attackerkb.com/topics/1iRdvtUgtW/cve-2023-26359/rapid7-analysis