Critical Apache Tomcat Vulnerability (CVE-2025-24813) Actively Exploited for Remote Code Execution

A critical remote code execution (RCE) vulnerability, identified as CVE-2025-24813, has been discovered in Apache Tomcat versions 9.0.0-M1 to 9.0.98, 10.1.0-M1 to 10.1.34, and 11.0.0-M1. This flaw allows unauthenticated attackers to execute arbitrary code on affected servers by exploiting the handling of partial PUT requests and path equivalence. Active exploitation has been observed globally, with attackers targeting systems primarily in the United States, Japan, India, South Korea, and Mexico.

Categories

Critical Apache Tomcat Vulnerability (CVE-2025-24813) Actively Exploited for Remote Code Execution

Also Read

Claude Surges as ChatGPT Faces Mass User Exodus Following Recent Updates

OpenAI Launches ChatGPT Library Feature to Simplify Personal AI Knowledge Management

Super Micro Eyes India Manufacturing Hub to Support Global AI Infrastructure

OpenAI Abandons Sora Video Tool Following Strategic Fallout with Disney

Amazon Acquires Fauna Robotics to Boost Warehouse Automation

Agnikul Cosmos Achieves 7-Day 3D-Printed Engine Breakthrough

UK Pilots Strict Social Media Bans and Digital Curfews for Children

Baltimore Sues Elon Musk’s xAI Over Grok-Generated Sexual Deepfakes

SpaceX Prepares for Historic IPO Filing as Early as This Week

Download TechShots

Share your insights

Subscribe To Our Newsletter.