THREATOPS
THREAT OPSThreat News › Maximum-Severity Adobe ColdFusion Flaw Exploited Within Hours of Disclosure

Maximum-Severity Adobe ColdFusion Flaw Exploited Within Hours of Disclosure

loworca_securityPublished 2026-07-08

<p>A critical vulnerability (CVE-2026-48282, CVSS 10.0) was disclosed affecting Adobe ColdFusion, allowing attackers to achieve full remote code execution via a path traversal in the Remote Development Services (RDS) FILEIO handler. Due to the potential for complete server compromise and the confirmed in-the-wild exploitation, immediate patching is required. About CVE-2026-48282 The issue originat

Indicators of compromise

Original source: https://orca.security/resources/blog/adobe-coldfusion-rce-flaw-cve-2026-48282/