Tag: apache
-
Apache Tomcat Vulnerability Actively Exploited Just 30 Hours After Public Disclosure
by
in SecurityNewsA recently disclosed security flaw impacting Apache Tomcat has come under active exploitation in the wild following the release of a public proof-of-concept (PoC) a mere 30 hours after public disclosure.The vulnerability, tracked as CVE-2025-24813, affects the below versions -Apache Tomcat 11.0.0-M1 to 11.0.2Apache Tomcat 10.1.0-M1 to 10.1.34Apache Tomcat 9.0.0-M1 to 9.0.98It concerns a First…
-
Critical RCE flaw in Apache Tomcat actively exploited in attacks
by
in SecurityNewsA critical remote code execution (RCE) vulnerability in Apache Tomcat tracked as CVE-2025-24813 is actively exploited in the wild, enabling attackers to take over servers with a simple PUT request. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-rce-flaw-in-apache-tomcat-actively-exploited-in-attacks/
-
Imperva Protects Against the Apache Camel Vulnerabilities
by
in SecurityNewsIntroduction: Understanding the Apache Camel Flaw On March 9, 2025, Apache released a security advisory for CVE-2025-27636, a vulnerability in the Apache Camel framework that allows attackers to bypass header filtering via miscased headers. Although rated as moderate, this vulnerability specifically affects configurations that use HTTP server components (such as camel-servlet, camel-jetty, camel-undertow, camel-platform-http, or……
-
One PUT Request to Own Tomcat: CVE-2025-24813 RCE is in the Wild
by
in SecurityNewsA devastating new remote code execution (RCE) vulnerability, CVE-2025-24813, is now actively exploited in the wild. Attackers need just one PUT API request to take over vulnerable Apache Tomcat servers. The exploit, originally published by a Chinese forum user iSee857, is already available online: CVE-2025-24813 PoC by iSee857. Exploit Breakdown: How a Simple PUT Request…
-
Breach Roundup: The Ivanti Patch Treadmill
by
in SecurityNewsAlso: Patch Tuesday, Equalize Scandal Figure Dies and Polymorphic Extension Attack. This week, Ivanti EPM customers should patch, Patch Tuesday, fake web browser extensions, North Korean Android malware, a key figure in Italy’s Equalize scandal dead of heart attack. Also, Apache Camel flaw, OpenAI’s agent automates phishing and Apple patched another zero day. First seen…
-
Apache NiFi Vulnerability Exposes MongoDB Credentials to Attackers
by
in SecurityNewsA critical security vulnerability has been identified in Apache NiFi, a popular open-source data integration tool. The vulnerability, tracked as CVE-2025-27017, allows authorized users with read access to the system to view sensitive credentials used to connect to MongoDB databases. This security flaw affects multiple versions of Apache NiFi, prompting urgent action from users to…
-
Apache Camel Vulnerability Allows Attackers to Inject Arbitrary Headers
by
in SecurityNewsA newly disclosed security vulnerability in Apache Camel, tracked as CVE-2025-27636, has raised alarms across the cybersecurity community. The flaw allows attackers to inject arbitrary headers into Camel Exec component configurations, potentially enabling remote code execution (RCE). The vulnerability impacts several versions, including3.10.0 through 3.22.3,4.8.0 through 4.8.4, and4.10.0 through 4.10.1. This exploit highlights the dangers of…
-
Apache Tomcat Remote Code Execution Vulnerability (CVE-2025-24813)
by
in SecurityNewsOverview Recently, NSFOCUS CERT detected that Apache issued a security announcement and fixed the remote code execution vulnerability of Apache Tomcat (CVE-2025-24813). An unauthenticated attacker can execute arbitrary code to gain server privileges when the application has servlet write enabled (disabled by default), uses Tomcat file session persistence and a default storage location, and contains…The…
-
RCE-Schwachstelle CVE-2025-24813 in Apache Tomcat
by
in SecurityNewsKurze Information für Leser, die für einen Apache Tomcat-Server verantwortlich sind. Es gibt wohl eine Schwachstelle CVE-2025-24813, die eine Remote Code Execution (RCE) ermöglicht. Es sind auch Datenabflüsse möglich daher sollten entsprechende Installationen umgehen aktualisiert werden. Die Schwachstelle CVE-2025-24813 … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/03/11/rce-schwachstelle-cve-2025-24813-in-apache-tomcat/
-
Apache Pinot Vulnerability Allows Attackers to Bypass Authentication
by
in SecurityNewsA significant security vulnerability affecting Apache Pinot, an open-source distributed data store designed for real-time analytics, has been publicly disclosed. The flaw, identified as CVE-2024-56325, allows remote attackers to bypass authentication on vulnerable installations, posing a critical threat to affected systems. Vulnerability Details The vulnerability stems from improper neutralization of special elements in URIs handled by…
-
Apache Camel RCE Vulnerability PoC Exploit Released in GitHub
by
in SecurityNewsA Proof of Concept (PoC) exploit for the Apache Camel vulnerability CVE-2025-27636 has been released on GitHub. This vulnerability affects Apache Camel versions 4.10.0-4.10.1, 4.8.0-4.8.4, and 3.10.0-3.22.3, allowing attackers to inject arbitrary headers and potentially execute internal Camel methods, including Remote Code Execution (RCE) via the Camel Exec component. Vulnerability Details The vulnerability arises from…
-
Apache Tomcat Flaw Could Allow RCE Attacks on Servers
by
in SecurityNews
Tags: apache, attack, cyber, flaw, open-source, rce, remote-code-execution, risk, software, vulnerabilityApache Tomcat, a widely used open-source web server software, has faced numerous security vulnerabilities in recent years. Some critical issues put servers at risk of remote code execution (RCE) and other attacks. These vulnerabilities highlight the importance of keeping software up-to-date and properly configured to prevent potential exploits. Detailed Vulnerabilities: Below is a formatted table…
-
Experts warn of mass exploitation of critical PHP flaw CVE-2024-4577
by
in SecurityNewsThreat actors exploit PHP flaw CVE-2024-4577 for remote code execution. Over 1,000 attacks detected globally. GreyNoise researchers warn of a large-scale exploitation of a critical vulnerability, tracked as CVE-2024-4577 (CVSS 9.8), in PHP. An attacker could exploit the vulnerability to achieve remote code execution on vulnerable servers using Apache and PHP-CGI. The flawCVE-2024-4577(CVSS score: 9.8)is…
-
New Apache Traffic Server Flaws Allow Malformed Request Exploits
by
in SecurityNewsThe Apache Software Foundation has disclosed several vulnerabilities affecting its Traffic Server software. These vulnerabilities allow malicious actors to exploit malformed requests and access control list (ACL) issues, posing serious security risks to users. The vulnerabilities, identified by CVE numbersCVE-2024-38311,CVE-2024-56195,CVE-2024-56196, andCVE-2024-56202, havebeen reported byvarious researchers and affect multiple versions of the Apache Traffic Server. Description…
-
Threat Actors Exploit PHP-CGI RCE Vulnerability to Attack Windows Machines
by
in SecurityNews
Tags: apache, attack, cve, cyber, cybersecurity, exploit, rce, remote-code-execution, threat, vulnerability, windowsA recent cybersecurity threat has emerged where unknown attackers are exploiting a critical remote code execution (RCE) vulnerability in PHP-CGI on Windows systems. This vulnerability, identified as CVE-2024-4577, allows attackers to execute arbitrary PHP code on servers using Apache with a vulnerable PHP-CGI setup. The attackers are primarily targeting organizations in Japan across various sectors,…
-
Chainguard “FIPS” Apache Cassandra
by
in SecurityNewsChainguard modified Cassandra so organizations needing FIPS-approved encryption can finally use it”, without risky workarounds or costly custom fixes. Apache Cassandr ia a powerful open-source database used by companies worldwide, but it wasn’t built with FIPS compliance in mind. Why Is This a Big Deal? Cassandra powers mission-critical systems for Netflix, Apple, and even the…
-
Critical Flaw in Apache Ignite (CVE-2024-52577) Allows Attackers to Execute Code Remotely
by
in SecurityNewsA severe security vulnerability (CVE-2024-52577) in Apache Ignite, the open-source distributed database and computing platform, has been disclosed. The flaw enables remote attackers to execute arbitrary code on vulnerable servers by exploiting insecure deserialization mechanisms in specific configurations. First reported on February 14, 2025, this issue impacts all Apache Ignite versions from 2.6.0 up to…
-
Apache Fineract SQL Injection Vulnerability Allows Malicious Data Injection
by
in SecurityNewsThe Apache Software Foundation has disclosed a critical SQL injection vulnerability in its widely utilized financial platform, Apache Fineract. The flaw, tracked as CVE-2024-32838, affects multiple API endpoints and poses a significant risk to applications built on this platform. This vulnerability allows authenticated attackers to inject malicious SQL data, potentially compromising sensitive information and the overall…
-
CISA warnt vor Angriffen auf Linux, Apache OFBiz, .NET und Paessler PRTG
by
in SecurityNewsDIe US-amerikanische Cybersicherheitsbehörde CISA warnt vor beobachteten Angriffen auf Lücken in Linux, Apache OFBiz, .NET und Paessler PRTG. First seen on heise.de Jump to article: www.heise.de/news/CISA-warnt-vor-Angriffen-auf-Linux-Apache-OFBiz-NET-und-Paessler-PRTG-10271835.html
-
CISA Adds Actively Exploited Apache and Microsoft Vulnerabilities to its Database
by
in SecurityNews
Tags: apache, cisa, cyber, cybersecurity, exploit, flaw, framework, infrastructure, kev, microsoft, network, software, vulnerabilityThe Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities Catalog with several critical security flaws, prompting heightened vigilance among organizations using affected software platforms. Among these newly added vulnerabilities are severe flaws in Apache OFBiz, Microsoft .NET Framework, and Paessler PRTG Network Monitor. These vulnerabilities, if exploited, could enable attackers to…
-
Critical Apache Solr Vulnerability Grants Write Access to Attackers on Windows
by
in SecurityNewsA new security vulnerability has been uncovered in Apache Solr, affecting versions 6.6 through 9.7.0. The issue, classified as a Relative Path Traversal vulnerability, exposes Solr instances running on Windows to potential risks of arbitrary file path manipulation and write-access. Tracked as SOLR-17543, this vulnerability could permit attackers to exploit the >>configset upload
-
Apache Solr For Windows instances Vulnerability Allows Arbitrary Path Write-Access
by
in SecurityNewsA critical security vulnerability (CVE-2024-52012) affecting Apache Solr instances on Windows has been identified, allowing attackers to gain arbitrary file path write access using the >>configset upload
-
Python administrator moves to improve software security
by
in SecurityNewsThe administrators of the Python Package Index (PyPI) have begun an effort to improve the hundreds of thousands of software packages that are listed. The attempt, which began earlier last year, is to identify and stop malware-laced packages from proliferating across the open-source community that contributes and consumes Python software. As previously reported, hijacking Python…
-
AWS declares it’s Iceberg all the way until customers say otherwise
by
in SecurityNewsCloud giant explains its thinking behind support for Apache open table format First seen on theregister.com Jump to article: www.theregister.com/2025/01/20/aws_iceberg_support/
-
Apache CXF Vulnerability Triggers DoS Attack
by
in SecurityNewsColm O hEigeartaigh announced a critical vulnerability affecting various versions of Apache CXF, a widely-used framework for building web services. This issue, documented as CVE-2025-23184, poses a significant risk as it can lead to a Denial of Service (DoS) attack due to improper handling of temporary files. The vulnerability has been confirmed in specific versions…
-
The biggest data breach fines, penalties, and settlements so far
by
in SecurityNews
Tags: access, apache, attack, breach, business, china, ciso, communications, compliance, control, credentials, credit-card, cyberattack, cybercrime, cybersecurity, data, data-breach, email, finance, flaw, framework, GDPR, google, hacker, Hardware, identity, Internet, law, leak, linkedin, microsoft, mobile, monitoring, network, office, phone, privacy, regulation, risk, service, software, technology, tool, training, update, vulnerabilitySizable fines assessed for data breaches in recent years suggest that regulators are getting more serious about cracking down on organizations that don’t properly protect consumer data.Hit with a $ 1.3 billion fine for unlawfully transferring personal data from the European Union to the US, Meta tops the list of recent big-ticket sanctions, with one…