A critical vulnerability in Adobe ColdFusion, identified as CVE-2026-48282, has been exploited by hackers in recent attacks. This flaw, which carries a perfect CVSS score of 10/10, was recently patched by Adobe, but its disclosure has significantly expanded the active attack surface. The vulnerability is being leveraged by threat actors to target vulnerable systems, emphasizing the need for prompt remediation. Organizations using Adobe ColdFusion should prioritize patching based on their exposure and evidence of exploitation1. The severity of this vulnerability necessitates immediate attention, as it can be exploited to gain unauthorized access to sensitive data and systems. The exploitation of CVE-2026-48282 highlights the importance of staying up-to-date with the latest security patches to prevent such attacks, so practitioners should take swift action to mitigate this vulnerability to protect their systems from potential breaches.