Last updated at Thu, 10 Aug 2023 20:45:27 GMT Rapid7 managed services teams have observed exploitation of Adobe ColdFusion in multiple customer environments. The attacks our team has responded to thus far appear to be chaining CVE-2023-29298, a Rapid7-discovered access control bypass in ColdFusion that was disclosed on July 11, with an additional vulnerability. The behavior our teams are observing appears to be consistent with a zero-day exploit published (and then subsequently taken down) by Project Discovery circa July 12. Background On Tuesday, July 11, Adobe released fixes for several vulnerabilities affecting ColdFusion, including a Rapid7-discovered access control bypass vulnerability (CVE-2023-29298) that we disclosed… Source link

[unable to retrieve full-text content]Adobe Fixes Critical ColdFusion Flaw | Decipher  Duo Security Source link

[unable to retrieve full-text content]Adobe patches critical ColdFusion, InDesign zero-day bugs  SC Media Source link

[unable to retrieve full-text content]Cold fusion is making a scientific comeback  Popular Science Source link

[unable to retrieve full-text content]Cold Fusion Energy Generation: A Game Changer for the Energy …  EnergyPortal.eu Source link

[unable to retrieve full-text content]‘Star Trek: Strange New Worlds’ Season 2 Episode 3: [Spoiler …  TVLine Source link

[unable to retrieve full-text content]The Potential of Cold Fusion Energy in Developing Countries  EnergyPortal.eu Source link

[unable to retrieve full-text content]How Star Trek Strange New Worlds Season 2’s Latest Episode …  CinemaBlend Source link

[unable to retrieve full-text content]How STRANGE NEW WORLDS Just Rewrote Important STAR TREK …  Nerdist Source link

[unable to retrieve full-text content]How STRANGE NEW WORLDS Just Rewrote Important STAR TREK …  Nerdist Source link