216.73.216.67

CVE-2025-61810

· Published 10/12/2025 00:16 · Modified 12/12/2025 19:05

Labels: CVE-2025-61810 2025-12-10CVE-2025-61810CWE-502[email protected]

Essential information

Published
10/12/2025 00:16
Modified
12/12/2025 19:05
Author
Creator
CVSS
8.4 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

CVSS metrics

Description

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. A high privileged attacker could exploit this vulnerability by providing maliciously crafted serialized data to the application. Exploitation of this issue requires user interaction and scope is changed.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:-:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update1:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update10:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update11:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update12:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update13:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update14:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update15:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update16:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update17:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update18:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update19:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update2:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update20:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update21:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update22:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update3:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update4:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update5:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update6:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update7:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update8:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2021:update9:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:-:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update1:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update10:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update11:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update12:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update13:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update14:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update15:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update16:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update2:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update3:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update4:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update5:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update6:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update7:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update8:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2023:update9:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2025:-:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2025:update1:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2025:update2:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2025:update3:*:*:*:*:*:*
adobe / coldfusion cpe:2.3:a:adobe:coldfusion:2025:update4:*:*:*:*:*:*

References