The Apache Software Foundation has released a security advisory to address a vulnerability in multiple versions of Tomcat. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system. Apache Software Foundation reports that security vulnerability (CVE-2025-24813) is likely to be exploited in the wild. Apache fixed vulnerability in Apache Tomcat versions 11.0.3, 10.1.35, 9.0.99.

Detailed information on vulnerability and updates can be found in Apache’s security advisories – apache.org