Unrated severityNVD Advisory· Published Dec 9, 2025· Updated Dec 10, 2025
ColdFusion | Improper Input Validation (CWE-20)
CVE-2025-61809
Description
ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized read and write access. Exploitation of this issue does not require user interaction and scope is unchanged.
Affected products
1- Range: 0
Patches
Vulnerability mechanics
References
1- helpx.adobe.com/security/products/coldfusion/apsb25-105.htmlmitrevendor-advisory
News mentions
0No linked articles in our index yet.