Navigation
Recherche
|
'Dead simple' hijacking hole in Apache Tomcat 'now actively exploited in the wild'
mardi 18 mars 2025, 01:44 , par TheRegister
One PUT request, one poisoned session file, and the server’s yours
A trivial flaw in Apache Tomcat that allows remote code execution and access to sensitive files is said to be under attack in the wild within a week of its disclosure.…
https://go.theregister.com/feed/www.theregister.com/2025/03/18/apache_tomcat_java_rce_flaw/
Voir aussi |
56 sources (32 en français)
Date Actuelle
mar. 18 mars - 11:23 CET
|