CISA includes critical Adobe ColdFusion vulnerability in KEV catalog

Ongoing active abuse of a critical deserialization flaw in Adobe ColdFusion has prompted the security bug's inclusion in the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog, according to The Hacker News.

abuse adobe adobe coldfusion agency bug catalog cisa coldfusion critical cybersecurity deserialization exploited exploited vulnerabilities flaw hacker inclusion infrastructure infrastructure security kev kev catalog known exploited vulnerabilities known exploited vulnerabilities catalog security vulnerabilities vulnerability vulnerability management