{"id":2172,"date":"2025-03-05T20:21:01","date_gmt":"2025-03-05T20:21:01","guid":{"rendered":"https:\/\/dijitalturk.com\/veysel\/?p=2172"},"modified":"2025-03-05T20:21:01","modified_gmt":"2025-03-05T20:21:01","slug":"coldfusion-ve-oracle-agile-plmdeki-aciklar-kotu-amacli-kullaniliyor","status":"publish","type":"post","link":"https:\/\/dijitalturk.com\/veysel\/coldfusion-ve-oracle-agile-plmdeki-aciklar-kotu-amacli-kullaniliyor\/","title":{"rendered":"ColdFusion ve Oracle Agile PLM&#8217;deki A\u00e7\u0131klar K\u00f6t\u00fc Ama\u00e7l\u0131 Kullan\u0131l\u0131yor!"},"content":{"rendered":"<h1>ABD Siber G\u00fcvenlik Ajans\u0131&#8217;ndan Kritik Uyar\u0131: Adobe ColdFusion ve Oracle Agile PLM&#8217;deki A\u00e7\u0131klar K\u00f6t\u00fc Ama\u00e7l\u0131 Kullan\u0131l\u0131yor!<\/h1>\n<p>ABD Siber G\u00fcvenlik ve Altyap\u0131 G\u00fcvenli\u011fi Ajans\u0131 (CISA), siber g\u00fcvenlik d\u00fcnyas\u0131n\u0131 alarma ge\u00e7iren bir duyuru yay\u0131nlad\u0131. Ajans, Adobe ColdFusion ve Oracle Agile Product Lifecycle Management (PLM) \u00fcr\u00fcnlerindeki iki kritik g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131, &#8220;Bilinen \u0130stismar Edilen G\u00fcvenlik A\u00e7\u0131klar\u0131 (KEV)&#8221; katalo\u011funa ekledi. Bu karar, s\u00f6z konusu a\u00e7\u0131klar\u0131n aktif olarak k\u00f6t\u00fc ama\u00e7l\u0131 kullan\u0131ld\u0131\u011f\u0131na dair elde edilen kan\u0131tlara dayan\u0131yor.<\/p>\n<h2>Hangi G\u00fcvenlik A\u00e7\u0131klar\u0131 Tehlike Sa\u00e7\u0131yor?<\/h2>\n<p>CISA&#8217;n\u0131n uyard\u0131\u011f\u0131 ve siber sald\u0131rganlar taraf\u0131ndan aktif olarak istismar edildi\u011fi tespit edilen g\u00fcvenlik a\u00e7\u0131klar\u0131 \u015funlar:<\/p>\n<ul>\n<li><b>CVE-2017-3066 (CVSS Puan\u0131: 9.8) &#8211; Adobe ColdFusion&#8217;daki Serile\u015ftirme Zafiyeti:<\/b> Bu kritik zafiyet, sald\u0131rganlar\u0131n uzaktan kod \u00e7al\u0131\u015ft\u0131rmas\u0131na olanak tan\u0131yor. CVSS&#8217;nin verdi\u011fi 9.8&#8217;lik y\u00fcksek puan, bu a\u00e7\u0131\u011f\u0131n ne kadar tehlikeli oldu\u011funu a\u00e7\u0131k\u00e7a g\u00f6steriyor.<\/li>\n<\/ul>\n<h2>Bu A\u00e7\u0131klar Ne Anlama Geliyor?<\/h2>\n<p>Bu g\u00fcvenlik a\u00e7\u0131klar\u0131, potansiyel olarak \u015firketlerin ve kullan\u0131c\u0131lar\u0131n hassas verilerinin \u00e7al\u0131nmas\u0131na, sistemlerinin ele ge\u00e7irilmesine ve hatta fidye yaz\u0131l\u0131m\u0131 sald\u0131r\u0131lar\u0131na maruz kalmas\u0131na neden olabilir. \u00d6zellikle kritik altyap\u0131lar\u0131 y\u00f6neten kurulu\u015flar ve bu yaz\u0131l\u0131mlar\u0131 kullanan i\u015fletmeler i\u00e7in bu durum ciddi bir risk olu\u015fturuyor.<\/p>\n<h2>CISA&#8217;dan Acil Eylem \u00c7a\u011fr\u0131s\u0131<\/h2>\n<p>CISA, federal sivil y\u00fcr\u00fctme \u015fubesi kurumlar\u0131na, bu g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 3 hafta i\u00e7inde, yani 17 May\u0131s 2024&#8217;e kadar yamamalar\u0131 talimat\u0131n\u0131 verdi. Ancak bu uyar\u0131 sadece devlet kurumlar\u0131 i\u00e7in de\u011fil, Adobe ColdFusion ve Oracle Agile PLM kullanan t\u00fcm kurulu\u015flar i\u00e7in ge\u00e7erli. CISA, t\u00fcm kullan\u0131c\u0131lar\u0131 bu g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 en k\u0131sa s\u00fcrede yamamaya ve sistemlerini g\u00fcvence alt\u0131na almaya \u00e7a\u011f\u0131r\u0131yor.<\/p>\n<h2>Nas\u0131l Korunabilirsiniz?<\/h2>\n<p>A\u015fa\u011f\u0131daki ad\u0131mlar\u0131 izleyerek sistemlerinizi bu g\u00fcvenlik a\u00e7\u0131klar\u0131na kar\u015f\u0131 koruyabilirsiniz:<\/p>\n<ol>\n<li><b>Yaz\u0131l\u0131mlar\u0131n\u0131z\u0131 G\u00fcncel Tutun:<\/b> Adobe ColdFusion ve Oracle Agile PLM yaz\u0131l\u0131mlar\u0131n\u0131z\u0131n en son s\u00fcr\u00fcmlerini kullan\u0131n. Yaz\u0131l\u0131m \u00fcreticilerinin yay\u0131nlad\u0131\u011f\u0131 g\u00fcvenlik g\u00fcncellemelerini d\u00fczenli olarak y\u00fckleyin.<\/li>\n<li><b>G\u00fcvenlik Taramalar\u0131 Yap\u0131n:<\/b> Sistemlerinizde g\u00fcvenlik a\u00e7\u0131\u011f\u0131 taramalar\u0131 yaparak olas\u0131 zay\u0131fl\u0131klar\u0131 tespit edin.<\/li>\n<li><b>Giri\u015fleri Do\u011frulay\u0131n:<\/b> Kullan\u0131c\u0131 giri\u015flerini ve verileri s\u0131k\u0131 bir \u015fekilde do\u011frulayarak serile\u015ftirme zafiyetlerini \u00f6nleyin.<\/li>\n<li><b>G\u00fcvenlik Duvar\u0131 ve \u0130zleme Sistemleri Kullan\u0131n:<\/b> Sistemlerinizi k\u00f6t\u00fc ama\u00e7l\u0131 trafikten korumak i\u00e7in g\u00fcvenlik duvar\u0131 ve izleme sistemleri kullan\u0131n.<\/li>\n<li><b>\u00c7al\u0131\u015fanlar\u0131n\u0131z\u0131 E\u011fitin:<\/b> Siber g\u00fcvenlik konusunda \u00e7al\u0131\u015fanlar\u0131n\u0131z\u0131 e\u011fiterek olas\u0131 sald\u0131r\u0131lara kar\u015f\u0131 bilin\u00e7lendirin.<\/li>\n<\/ol>\n<h2>Unutmay\u0131n: Siber G\u00fcvenlik S\u00fcrekli Bir S\u00fcre\u00e7tir!<\/h2>\n<p>Siber g\u00fcvenlik, tek seferlik bir i\u015flem de\u011fil, s\u00fcrekli bir s\u00fcre\u00e7tir. Sistemlerinizi d\u00fczenli olarak g\u00fcncelleyerek ve g\u00fcvenli\u011fi art\u0131rarak, siber sald\u0131r\u0131lara kar\u015f\u0131 daha diren\u00e7li hale gelebilirsiniz.<\/p>\n<p><b>Ek Bilgi:<\/b> CISA&#8217;n\u0131n KEV katalo\u011fu, aktif olarak istismar edilen g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131n bir listesini i\u00e7erir ve kurulu\u015flara \u00f6ncelikli olarak yamalanmas\u0131 gereken a\u00e7\u0131klara odaklanmalar\u0131 konusunda rehberlik eder.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>ABD Siber G\u00fcvenlik Ajans\u0131&#8217;ndan Kritik Uyar\u0131: Adobe ColdFusion ve Oracle Agile PLM&#8217;deki A\u00e7\u0131klar K\u00f6t\u00fc Ama\u00e7l\u0131 Kullan\u0131l\u0131yor! ABD Siber G\u00fcvenlik ve [&hellip;]<\/p>\n","protected":false},"author":512,"featured_media":2174,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_uag_custom_page_level_css":"","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"default","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[36],"tags":[87,155,370],"class_list":["post-2172","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-haber","tag-guvenlik","tag-hack","tag-security"],"uagb_featured_image_src":{"full":["https:\/\/dijitalturk.com\/veysel\/wp-content\/uploads\/2025\/03\/pexels-photo-3861969-3861969-scaled.jpg",2560,1707,false],"thumbnail":["https:\/\/dijitalturk.com\/veysel\/wp-content\/uploads\/2025\/03\/pexels-photo-3861969-3861969-150x150.jpg",150,150,true],"medium":["https:\/\/dijitalturk.com\/veysel\/wp-content\/uploads\/2025\/03\/pexels-photo-3861969-3861969-285x190.jpg",285,190,true],"medium_large":["https:\/\/dijitalturk.com\/veysel\/wp-content\/uploads\/2025\/03\/pexels-photo-3861969-3861969-768x512.jpg",768,512,true],"large":["https:\/\/dijitalturk.com\/veysel\/wp-content\/uploads\/2025\/03\/pexels-photo-3861969-3861969-570x380.jpg",570,380,true],"1536x1536":["https:\/\/dijitalturk.com\/veysel\/wp-content\/uploads\/2025\/03\/pexels-photo-3861969-3861969-1536x1024.jpg",1536,1024,true],"2048x2048":["https:\/\/dijitalturk.com\/veysel\/wp-content\/uploads\/2025\/03\/pexels-photo-3861969-3861969-2048x1366.jpg",2048,1366,true]},"uagb_author_info":{"display_name":"Dragon DT","author_link":"https:\/\/dijitalturk.com\/veysel\/author\/dragon\/"},"uagb_comment_info":0,"uagb_excerpt":"ABD Siber G\u00fcvenlik Ajans\u0131&#8217;ndan Kritik Uyar\u0131: Adobe ColdFusion ve Oracle Agile PLM&#8217;deki A\u00e7\u0131klar K\u00f6t\u00fc Ama\u00e7l\u0131 Kullan\u0131l\u0131yor! ABD Siber G\u00fcvenlik ve [&hellip;]","_links":{"self":[{"href":"https:\/\/dijitalturk.com\/veysel\/wp-json\/wp\/v2\/posts\/2172","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dijitalturk.com\/veysel\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dijitalturk.com\/veysel\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dijitalturk.com\/veysel\/wp-json\/wp\/v2\/users\/512"}],"replies":[{"embeddable":true,"href":"https:\/\/dijitalturk.com\/veysel\/wp-json\/wp\/v2\/comments?post=2172"}],"version-history":[{"count":0,"href":"https:\/\/dijitalturk.com\/veysel\/wp-json\/wp\/v2\/posts\/2172\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/dijitalturk.com\/veysel\/wp-json\/wp\/v2\/media\/2174"}],"wp:attachment":[{"href":"https:\/\/dijitalturk.com\/veysel\/wp-json\/wp\/v2\/media?parent=2172"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dijitalturk.com\/veysel\/wp-json\/wp\/v2\/categories?post=2172"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dijitalturk.com\/veysel\/wp-json\/wp\/v2\/tags?post=2172"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}