Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/catc0n/statuses/114189217690725779">Caitlin Condon (catc0n@infosec.exchange)'s status on Thursday, 20-Mar-2025 00:05:23 JST</a><a href="https://infosec.exchange/@catc0n" title="catc0n@infosec.exchange"><img src="https://gnusocial.jp/avatar/237167-48-20240121172844.webp" width="48" height="48" alt="Caitlin Condon" style="position: absolute; left: 0; top: 0;">Caitlin Condon</a></section><article><p>Has anyone actually confirmed real-world compromises from the supposed Apache Tomcat exploitation (CVE-2025-24813) going on? Breathless headlines seem to be quoting a single vague source, and this bug isn't exploitable in anywhere close to a default config <a href="https://attackerkb.com/assessments/1a24556d-24fb-4017-be67-e4ab39c76566" rel="nofollow">https://attackerkb.com/assessments/1a24556d-24fb-4017-be67-e4ab39c76566</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4758941#notice-9321539">In conversation</a><time datetime="2025-03-20T00:05:23+09:00" title="Thursday, 20-Mar-2025 00:05:23 JST">about 2 months ago</time> <span>from <span><a href="https://infosec.exchange/@catc0n/114189217690725779" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@catc0n/114189217690725779">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: attackerkb.com</div><h5><a href="https://attackerkb.com/assessments/1a24556d-24fb-4017-be67-e4ab39c76566">CVE-2025-24813 | AttackerKB</a></h5><div></div></header><div>Path Equivalence: 'file.Name' (Internal Dot) leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files vi…</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Caitlin Condon (catc0n@infosec.exchange)'s status on Thursday, 20-Mar-2025 00:05:23 JST Caitlin Condon
Has anyone actually confirmed real-world compromises from the supposed Apache Tomcat exploitation (CVE-2025-24813) going on? Breathless headlines seem to be quoting a single vague source, and this bug isn't exploitable in anywhere close to a default config https://attackerkb.com/assessments/1a24556d-24fb-4017-be67-e4ab39c76566
In conversationabout 2 months ago from infosec.exchangepermalink
Attachments
1. Domain not in remote thumbnail source whitelist: attackerkb.com
  CVE-2025-24813 | AttackerKB
  Path Equivalence: 'file.Name' (Internal Dot) leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files vi…

Public

Embed Notice

HTML Code

Corresponding Notice