2 matches found
Exploit for Deserialization of Untrusted Data in Apache Tomcat
CVE-2025-24813: Apache 1. Explanation Tomcat is vulnerabl...
CVE-2025-24813
Path Equivalence: ‘file.Name’ Internal Dot leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files via write enabled Default Servlet in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.2, from 10.1.0-M1 through...