The US government Cybersecurity and Infrastructure Security Agency (CISA) keeps an excellent database of software and firmware that it knows are being exploited in the wild. Adobe’s ColdFusion has been added to that database, the Known Exploited Vulnerabilities Catalog:
CISA Adds Two Known Exploited Vulnerabilities to Catalog | CISA
This is one of the resources our team to check to ensure our customers are secure.
Clive Catton MSc (Cyber Security) – by-line and other articles
CISA also releases industrial control system advisories – if you are responsible for these types of systems you should monitor their news page:
My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.