Close Menu
    What's Hot

    ‘Divorce glow-up’: Women are posting stunning before-and-after photos on TikTok. Why they’re going viral

    Does Trump Worry About Conflicts of Interest? ‘I Found Out That Nobody Cared.’

    How Trump Made ‘Y.M.C.A.’ His Anthem, Despite the Village People and Victor Willis’s Mixed Feelings

    Facebook X (Twitter) Instagram
    Trending
    • ‘Divorce glow-up’: Women are posting stunning before-and-after photos on TikTok. Why they’re going viral
    • Does Trump Worry About Conflicts of Interest? ‘I Found Out That Nobody Cared.’
    • How Trump Made ‘Y.M.C.A.’ His Anthem, Despite the Village People and Victor Willis’s Mixed Feelings
    • EU border rules causing travel chaos ahead of summer peak, industry warns | Aviation News
    • Mexico’s Victory Over Ecuador Made the Ground Shake. Was It an Artificial Earthquake?
    • Harry Brook the ‘front-runner’ as England Test captain, says Eoin Morgan, as Michael Atherton ponders ‘why the lack of leaders?’ | Cricket News
    • Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic
    • For Congo Fans, the Thrill of Victory Was so Close, Until It Wasn’t
    interluknewsinterluknews
    • Home
    • Business
      • Corporate News
      • Industry Insights
      • Startups & Entrepreneurship
      • Technology & Innovation
    • Economy
      • Economic Policy
      • Financial Analysis
      • Inflation & Interest Rates
      • Trade & Markets
    • Global
      • Conflicts & Security
      • Diplomacy
      • Global Trends
      • International Affairs
    • Lifestyle
      • Fashion
      • Food & Dining
      • Personal Development
      • Travel
    • Opinion
      • Columns
      • Editorials
      • Expert Opinions
      • Reader Voices
    • More
      • Politics
        • Elections
        • Government & Policy
        • International Relations
        • Political Analysis
      • Sports
        • Cricket
        • Football / Soccer
        • International Sports
        • Local Sports
      • Technology
        • Artificial Intelligence
        • Cybersecurity
        • Gadgets & Reviews
        • Tech News
      • South Africa News
    Facebook X (Twitter) Instagram
    interluknewsinterluknews
    Cybersecurity

    Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic

    adminBy adminJuly 2, 2026No Comments3 Mins Read
    Share Facebook Twitter Pinterest Copy Link Telegram LinkedIn Tumblr Email
    Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic
    Share
    Facebook Twitter LinkedIn Pinterest Email

    Ravie LakshmananJul 01, 2026Artificial Intelligence / Vulnerability

    Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic

    Adobe has released patches for multiple maximum-severity security flaws impacting Adobe ColdFusion and Adobe Campaign Classic.

    The ColdFusion updates “resolves critical and important vulnerabilities that could lead to arbitrary code execution, privilege escalation, arbitrary file system read, and security feature bypass,” Adobe said in an alert released Tuesday.

    The vulnerabilities are listed below –

    • CVE-2026-48276, CVE-2026-48283 (CVSS scores: 10.0) – Unrestricted upload of file with dangerous type vulnerabilities that could lead to arbitrary code execution
    • CVE-2026-48277, CVE-2026-48281, CVE-2026-48316 (CVSS scores: 10.0) – Improper input validation vulnerabilities that could lead to arbitrary code execution
    • CVE-2026-48282 (CVSS score: 10.0) – A path traversal vulnerability that could lead to arbitrary code execution
    • CVE-2026-48313 (CVSS score: 9.3) – A path traversal vulnerability that could lead to arbitrary file system read
    • CVE-2026-48315 (CVSs score: 9.3) – An improper input validation vulnerability that could lead to privilege escalation

    The issues have been addressed in ColdFusion 2023 Update 21 and ColdFusion 2025 Update 10. Security researchers Anirudh Anand, Matan Sandori, and 2Bsecure have been credited with discovering and reporting CVE-2026-48283, CVE-2026-48313, and CVE-2026-48307.

    Cybersecurity

    Separately, Adobe has also shipped fixes to close out a critical flaw in Adobe Campaign Classic impacting versions ACC v7: 7.4.3 build 9396 and earlier for Windows and Linux that could result in arbitrary code execution.

    The vulnerability, tracked as CVE-2026-48286 (CVSS score: 10.0), is a case of incorrect authorization that could enable an attacker to execute arbitrary code on affected systems. It has been patched in version ACC v7: 7.4.3 build 9397.

    Adobe noted that CVE-2026-48286 only impacts on-premise Adobe Campaign instances, including fully on-premise deployments and on-premise components in hybrid deployments. Adobe-hosted instances have already been updated and require no action.

    The company also emphasized that it has not found any exploits in the wild for any of the issues addressed as part of the two updates.

    The disclosure comes as Adobe said it’s moving from monthly to twice-monthly publication of security bulletins and advisories on the second and fourth Tuesday of each month starting July 14, 2026, as a direct result of accelerated vulnerability discovery using artificial intelligence (AI) models.

    “The frontier AI capabilities we are using are also available to attackers, and the window between public vulnerability disclosure and active exploitation is compressing from days to hours,” Adobe’s Chief Security Officer Aanchal Gupta said. “We are applying AI to find and fix vulnerabilities first, and getting those fixes to customers faster is the natural next step.”

    Adobe campaign classic ColdFusion CVSS Flaws Patches
    Follow on Google News Follow on Flipboard
    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email Copy Link
    Previous ArticleFor Congo Fans, the Thrill of Victory Was so Close, Until It Wasn’t
    Next Article Harry Brook the ‘front-runner’ as England Test captain, says Eoin Morgan, as Michael Atherton ponders ‘why the lack of leaders?’ | Cricket News
    admin
    • Website

    Related Posts

    VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer

    July 2, 2026

    19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges

    July 1, 2026

    Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters

    July 1, 2026
    Leave A Reply Cancel Reply

    Demo
    Latest Posts

    ‘Divorce glow-up’: Women are posting stunning before-and-after photos on TikTok. Why they’re going viral

    Does Trump Worry About Conflicts of Interest? ‘I Found Out That Nobody Cared.’

    How Trump Made ‘Y.M.C.A.’ His Anthem, Despite the Village People and Victor Willis’s Mixed Feelings

    EU border rules causing travel chaos ahead of summer peak, industry warns | Aviation News

    Latest Posts

    Subscribe to News

    Get the latest sports news from NewsSite about world, sports and politics.

    Advertisement
    Demo

    We are a digital news platform delivering timely, accurate, and insightful coverage of politics, global affairs, business, economy, sports, and more. Our mission is to keep readers informed with reliable news, clear analysis, and stories that truly matter.
    We're social. Connect with us:

    Facebook X (Twitter) Instagram Pinterest YouTube

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    Type above and press Enter to search. Press Esc to cancel.

    Powered by
    ...
    ►
    Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
    None
    ►
    Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
    None
    ►
    Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
    None
    ►
    Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
    None
    ►
    Unclassified cookies are cookies that we are in the process of classifying, together with the providers of individual cookies.
    None
    Powered by