CNNVD-202509-1309 Information

CNNVD ID

CNNVD-202509-1309

Related CVE

CVE-2025-54261

• CNNVD Published: 2025-09-09

Description (Chinese)

Adobe ColdFusion是美国奥多比（Adobe）公司的一套快速应用程序开发平台。该平台包括集成开发环境和脚本语言。 Adobe ColdFusion 2025.3版本、2023.15版本、2021.21版本及之前版本存在路径遍历漏洞，该漏洞源于路径遍历可能导致执行任意代码。

Description (English)

Adobe ColdFusion is a fast-track application development platform for Adobe in the United States. The platform includes an integrated development environment and script language. Adobe ColdFusion 2025.3, 2023.15, 2021.21 and previous versions had a loophole in their paths, which stemmed from the fact that a routing could lead to the implementation of any code.

Hazard Level

Low

Vulnerability Type

路径遍历

Affected Vendor

奥多比

Published

2025-09-09

Last Modified

2026-02-24

References

https://helpx.adobe.com/security/products/coldfusion/apsb25-93.html

Patch

https://helpx.adobe.com/security/products/coldfusion/apsb25-93.html