Overview Recently, NSFOCUS CERT detected that Apache issued a security announcement and fixed the remote code execution vulnerability of Apache Tomcat (CVE-2025-24813). An unauthenticated attacker can execute arbitrary code to gain server privileges when the application has servlet write enabled (disabled by default), uses Tomcat file session persistence and a default storage location, and contains…The post Apache Tomcat Remote Code Execution Vulnerability (CVE-2025-24813) appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..
First seen on securityboulevard.com
Jump to article: https://securityboulevard.com/2025/03/apache-tomcat-remote-code-execution-vulnerability-cve-2025-24813/
