Security News > 2024 > December > Apache fixes remote code execution bypass in Tomcat web server

Apache fixes remote code execution bypass in Tomcat web server

2024-12-23 12:33

Apache has released a security update that addresses an important vulnerability in Tomcat web server that could lead to an attacker achieving remote code execution. [...]

News URL

https://www.bleepingcomputer.com/news/security/apache-fixes-remote-code-execution-bypass-in-tomcat-web-server/

#apache #bypass #codeexecution #remote #server #tomcat #WEB

Related news

New “whoAMI” Attack Exploits AWS AMI Name Confusion for Remote Code Execution (source)
Elastic Releases Urgent Fix for Critical Kibana Vulnerability Enabling Remote Code Execution (source)
Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)
Apache Tomcat Vulnerability Actively Exploited Just 30 Hours After Public Disclosure (source)
'Dead simple' hijacking hole in Apache Tomcat 'now actively exploited in the wild' (source)
New Critical AMI BMC Vulnerability Enables Remote Server Takeover and Bricking (source)
Stealthy Apache Tomcat Critical Exploit Bypasses Security Filters: Are You at Risk? (source)
WordPress security plugin WP Ghost vulnerable to remote code execution bug (source)
Critical Next.js auth bypass vulnerability opens web apps to compromise (CVE-2025-29927) (source)
Recent Windows Server 2025 updates cause Remote Desktop freezes (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Apache		283	13	567	725	381	1686

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.