CNNVD-202512-1753 Information

Dec 10, 2025 cve

CNNVD ID

CNNVD-202512-1753

CVE-2025-61812

  • CNNVD Published: 2025-12-10

Description (Chinese)

Adobe ColdFusion是美国奥多比(Adobe)公司的一套快速应用程序开发平台。该平台包括集成开发环境和脚本语言。 Adobe ColdFusion 2025.4版本、2023.16版本、2021.22版本及之前版本存在输入验证错误漏洞,该漏洞源于输入验证不当,可能导致高权限攻击者执行任意代码。

Description (English)

Adobe ColdFusion is a fast-track application development platform for Adobe in the United States. The platform includes an integrated development environment and script language. There is an input authentication error gap in Adobe ColdFusion version 2025.4, 2023.16, 2021.22 and earlier versions, which stems from inappropriate input authentication, which may lead to the implementation of arbitrary codes by high-authorized attackers.

Hazard Level

Medium

Vulnerability Type

输入验证错误

Affected Vendor

奥多比

Published

2025-12-10

Last Modified

2026-02-24

References

https://helpx.adobe.com/security/products/coldfusion/apsb25-105.html

Patch

https://helpx.adobe.com/security/products/coldfusion/apsb25-105.html

Share on: