Adobe Campaign Classic CWE-863 incorrect-authorization code execution (CVSS 10.0), APSB26-69
cve · CVE-2026-48286
Coverage timeline
1
first 2026-07-02 → last 2026-07-02
Briefs
1
1 distinct
Sources cited
16
12 hosts
Sections touched
0
—
Co-occurring entities
0
no co-occurrence
Story timeline
- 2026-07-02CTI Daily Brief — 2026-07-02
Source distribution
- helpx.adobe.com3 (19%)
- bleepingcomputer.com2 (12%)
- sansec.io2 (12%)
- cyberscoop.com1 (6%)
- esentire.com1 (6%)
- helpnetsecurity.com1 (6%)
- imperva.com1 (6%)
- msrc.microsoft.com1 (6%)
- other4 (25%)
External references
All cited sources (16)
- helpx.adobe.comprimaryinlineAdobe PSIRT APSB26-69, 2026-06-30https://helpx.adobe.com/security/products/campaign/apsb26-69.html
- helpx.adobe.comprimaryinlineAdobe PSIRT APSB26-64https://helpx.adobe.com/security/products/coldfusion/apsb26-64.html
- helpx.adobe.comprimaryinlineAdobe PSIRThttps://helpx.adobe.com/security/products/coldfusion/apsb26-68.html
- bleepingcomputer.cominlineBleepingComputerhttps://www.bleepingcomputer.com/news/security/adobe-patches-seven-max-severity-coldfusion-campaign-flaws/
- bleepingcomputer.cominlineBleepingComputer, 2026-06-04https://www.bleepingcomputer.com/news/security/credit-card-theft-campaign-abuses-stripe-to-host-stolen-payment-info/
- cyberscoop.cominlineCyberScoop, 2026-05-22https://cyberscoop.com/fbi-phishing-kali365-microsoft365-access-tokens/
- esentire.cominlineeSentire TRUhttps://www.esentire.com/security-advisories/progress-kemp-loadmaster-vulnerability-targeted-cve-2026-8037
- helpnetsecurity.cominlineHelp Net Security, 2026-05-22https://www.helpnetsecurity.com/2026/05/22/kali365-microsoft-365-phishing-fbi-warning/
- imperva.cominlineImperva, 2026-05-29https://www.imperva.com/blog/imperva-customers-protected-against-cve-2026-45247-in-mirasvit-full-page-cache-warmer-for-magento/
- msrc.microsoft.cominlineMicrosoft MSRChttps://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45659
- sansec.ioinlineSansec, 2026-05-26https://sansec.io/research/mirasvit-cache-warmer-object-injection
- sansec.ioinlineSansec, 2026-06-04https://sansec.io/research/stripe-api-skimmer-infrastructure
- securitymagazine.cominlineSecurity Magazinehttps://www.securitymagazine.com/articles/102368-security-experts-discuss-validity-of-handalas-cal-water-hacking-claim
- synacktiv.cominlineSynacktivhttps://www.synacktiv.com/en/publications/caught-in-the-octopus-trap-unauthenticated-rce-in-argo-cd-with-codeql
- therecord.mediainlineThe Record, 2026-05-22https://therecord.media/fbi-warns-of-kali365-phishing-attacks
- theregister.cominlineThe Register, 2026-05-22https://www.theregister.com/cyber-crime/2026/05/22/fbi-warns-of-kali365-as-device-code-phishing-soars/5245024
Items in briefs about Adobe Campaign Classic CWE-863 incorrect-authorization code execution (CVSS 10.0), APSB26-69
No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.