Hi,
Details of our application are given below:
OS: RHEL 8.x [OpenSSL version: 1.1.1]
Configuration: We're using Tomcat as an HTTP Server, but it is embedded as part
of our application
Java version: Java 8u381
We're using Apache Tomcat 9.0.86 and are considering an update to 9.0.98.
During the
On Thu, Dec 26, 2024 at 2:56 PM Luqman C
wrote:
>
> Dear Apache Tomcat Team,
> I am writing to verify if my client environment is affected by the
> CVE-2024-56337 vulnerability in Apache Tomcat, related to remote code
> execution (RCE) via a write-enabled default servlet, which also impacts
> m
Dear Apache Tomcat Team,
I am writing to verify if my client environment is affected by the
CVE-2024-56337 vulnerability in Apache Tomcat, related to remote code execution
(RCE) via a write-enabled default servlet, which also impacts mitigation for
CVE-2024-50379. Below are the details of the se
