CNNVD-202512-1754 Information

Dec 10, 2025 cve

CNNVD ID

CNNVD-202512-1754

CVE-2025-61810

  • CNNVD Published: 2025-12-10

Description (Chinese)

Adobe ColdFusion是美国奥多比(Adobe)公司的一套快速应用程序开发平台。该平台包括集成开发环境和脚本语言。 Adobe ColdFusion 2025.4版本、2023.16版本、2021.22版本及之前版本存在代码问题漏洞,该漏洞源于反序列化不可信数据,可能导致当前用户环境下执行任意代码。

Description (English)

Adobe ColdFusion is a fast-track application development platform for Adobe in the United States. The platform includes an integrated development environment and script language. There is a code gap in Adobe ColdFusion version 2025.4, version 2023.16, version 2021.22 and previous versions, which stems from the lack of credibility of the anti-sequencing data and may lead to the enforcement of arbitrary codes in the current user environment.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

奥多比

Published

2025-12-10

Last Modified

2026-02-24

References

https://helpx.adobe.com/security/products/coldfusion/apsb25-105.html

Patch

https://helpx.adobe.com/security/products/coldfusion/apsb25-105.html

Share on: