Home / Jul 09, 2026 / Story
0
#6 BleepingComputer general July 08, 2026 at 07:16 UTC

CISA orders feds to patch max severity ColdFusion flaw by Friday

By Sergiu Gatlan

AI Summary

CISA ordered federal agencies to patch a maximum-severity Adobe ColdFusion vulnerability (CVE-2026-48282, CVSS 10.0) by July 11, citing active exploitation in the wild. ColdFusion's history as a high-value target for initial access means this deadline applies pressure not just to federal agencies but to any enterprise running the platform. Organizations without a patch management cadence for ColdFusion should treat this as an emergency remediation.

Relevance score: 83.0/100

# More from July 09