Security News > 2025 > March > 'Dead simple' hijacking hole in Apache Tomcat 'now actively exploited in the wild'
2025-03-18 00:44
One PUT request, one poisoned session file, and the server’s yours A trivial flaw in Apache Tomcat that allows remote code execution and access to sensitive files is said to be under attack in the wild within a week of its disclosure.…
News URL
https://go.theregister.com/feed/www.theregister.com/2025/03/18/apache_tomcat_java_rce_flaw/