Bleeping Computer

Active Scans for Apache Tomcat Ghostcat Vulnerability Detected, Patch Now

Ongoing scans for Apache Tomcat servers unpatched against the Ghostcat vulnerability that allows potential attackers to take over servers have been detected over the weekend. As cyber threat ...
TechRadar

A worrying critical security flaw in Apache Tomcat could let hackers take over servers with ease

Security outfit Wallarm spotted a PoC in the wild The method abuses a deserialization flaw in Apache Tomcat It allows attackers to fully take over vulnerable endpoints A deserialization vulnerability ...
ZDNet

Ghostcat bug impacts all Apache Tomcat versions released in the last 13 years

Apache Tomcat servers released in the last 13 years are vulnerable to a bug named Ghostcat that can allow hackers to take over unpatched systems. Discovered by Chinese cybersecurity firm Chaitin Tech, ...
Dark Reading

Apache Tomcat RCE Vulnerability Under Fire With 2-Step Exploit

A vulnerability found in Apache Tomcat, tracked as CVE-2025-24813, is being actively exploited in the wild. The remote code execution (RCE) bug allows attackers to take over servers using a PUT API ...
Threat Post

Apache Warns of Tomcat Remote Code Execution Vulnerability

Some older versions of Apache Tomcat, the company’s open source web server and servlet container, are vulnerable to remote code execution. Some older versions of the open source Apache Tomcat web ...
Bleeping Computer

Important Severity Remote Code Execution Vulnerability Patched in Tomcat

A remote code execution flaw impacting Apache Tomcat was fixed by the Apache Software Foundation to prevent potential remote attackers to exploit vulnerable servers and take control of affected ...
InfoQ

Apache Tomcat 7 Becomes Latest Stable Release

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Cory Benfield discusses the evolution of ...