CF2023 Tomcat 9.0.93 - Security Vulnerability CVE-2025-31651

Forum|Forum|9 months ago
May 9, 2025
1 reply
387 views

My company has just notified me of security vulnerabiltiy CVE-2025-31651 which was recently reported. The vulnerability appears to affect Tomcat versions 9.0.0.M1 through 9.0.102 and the only mitigation seems to be updating to version 9.0.104 or later.

Does anyone know if Adobe has plans for a CF2023 to update Tomcat in order to mitigate this vulnerability?

Thank you!

Security

BKBK

Community Expert

Adobe's ColdFusion team watches out for Tomcat vulnerabilities, and usually mitigates with a hotfix shortly after they are reported. For more information, send an e-mail to cfsup[at]adobe.com

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded