CVE-2025-24813 | Apache Tomcat up to 9.0.98/10.1.34/11.0.2 Partial PUT path equivalence

A vulnerability has been found in Apache Tomcat up to 9.0.98/10.1.34/11.0.2 and classified as problematic. This vulnerability affects unknown code of the component Partial PUT Handler. The manipulation leads to path equivalence: ‘file.name’ (internal dot).

This vulnerability was named CVE-2025-24813. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More