A devastating new remote code execution (RCE) vulnerability, CVE-2025-24813, is now actively exploited in the wild. Attackers need just one PUT API request to take over vulnerable Apache Tomcat servers. The exploit, originally published by a Chinese forum user iSee857, is already available online: CVE-2025-24813 PoC by iSee857. Exploit Breakdown: How a Simple PUT Request […]
The post One PUT Request to Own Tomcat: CVE-2025-24813 RCE is in the Wild appeared first on Wallarm.
The post One PUT Request to Own Tomcat: CVE-2025-24813 RCE is in the Wild appeared first on Security Boulevard.