THREATOPS
THREAT OPSCVEs › CVE-2025-24813

CVE-2025-24813 — Apache Tomcat Path Equivalence Vulnerability

CISA KEVExploited: confirmedApache

Apache Tomcat contains a path equivalence vulnerability that allows a remote attacker to execute code, disclose information, or inject malicious content via a partial PUT request.

Vulnerability details

Related reporting