High Threat Security Alert (A25-03-09): Vulnerability in Apache Tomcat

Description:

The Apache Software Foundation released security updates to address the vulnerability in the Apache Tomcat. A remote attacker could exploit the vulnerability by sending a specially crafted request to the affected systems.

Reports indicated that the proof-of-concept (PoC) for the remote code execution vulnerability (CVE-2025-24813) in Apache Tomcat is publicly available and the vulnerability is being actively exploited. System administrators are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.

Affected Systems:

• Apache Tomcat 11.0.0-M1 to 11.0.2
• Apache Tomcat 10.1.0-M1 to 10.1.34
• Apache Tomcat 9.0.0-M1 to 9.0.98

For detailed information of the affected systems, please refer to the corresponding security advisory at software provider's website.

Impact:

Successful exploitation of the vulnerability could lead to remote code execution, information disclosure or tampering on an affected system.

Recommendation:

The Apache Software Foundation has released new versions of the software to address the issue and they can be downloaded at the following URLs:
https://tomcat.apache.org/download-11.cgi#11.0.3
https://tomcat.apache.org/download-10.cgi#10.1.35
https:// tomcat.apache.org/download-90.cgi#9.0.99

More Information:

• https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.99
• https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.35
• https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.3
• https://www.hkcert.org/security-bulletin/apache-tomcat-remote-code-execution-vulnerability_20250312
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24813