Apache Tomcat security advisory (AV25-354)

Serial number: AV25-354
Date: June 18, 2025

On June 16, 2025, Apache published a security advisory to address a vulnerability VulnerabilityA flaw or weakness in the design or implementation of an information system or its environment that could be exploited to adversely affect an organization's assets or operations. in the following products:

Apache Tomcat – versions 11.0.0-M1 to 11.0.7
Apache Tomcat – versions 10.1.0-M1 to 10.1.41
Apache Tomcat – versions 9.0.0.M1 to 9.0.105

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.

Apache Security Advisory - [SECURITY] CVE-2025-48988 Apache Tomcat - DoS in multipart upload

Date modified:: 2025-06-18

Language selection

Search

Apache Tomcat security advisory (AV25-354)