this post was submitted on 17 Mar 2025
5 points (100.0% liked)

Pulse of Truth

794 readers
49 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 1 year ago
MODERATORS
 

A recently disclosed security flaw impacting Apache Tomcat has come under active exploitation in the wild following the release of a public proof-of-concept (PoC) a mere 30 hours after public disclosure. The vulnerability, tracked as CVE-2025-24813, affects the below versions -

Apache Tomcat 11.0.0-M1 to 11.0.2 Apache Tomcat 10.1.0-M1 to 10.1.34 Apache Tomcat 9.0.0-M1 to 9.0.98

It concerns a

top 1 comments
sorted by: hot top controversial new old
[–] drkt_@lemmy.dbzer0.com 1 points 23 hours ago

I wonder if that has anything to do with the Tomcat test pages that have been showing up on my honeypot.