{"provider_name":"Hatena Blog","author_name":"tanigawa","blog_title":"TT \u8106\u5f31\u6027 Blog","title":"Apache Tomcat Vulnerability Actively Exploited Just 30 Hours After Public Disclosure","provider_url":"https://hatena.blog","image_url":null,"height":"190","published":"2025-03-17 00:00:00","url":"https://vul.hatenadiary.com/entry/2025/03/17/000000_1","type":"rich","width":"100%","blog_url":"https://vul.hatenadiary.com/","description":"\u3010\u8a33\u3011Apache Tomcat\u306e\u8106\u5f31\u6027\u3001\u516c\u958b\u304b\u3089\u308f\u305a\u304b30\u6642\u9593\u3067\u7a4d\u6975\u7684\u306b\u60aa\u7528\u3055\u308c\u308b \u3010\u8106\u5f31\u6027\u5185\u5bb9\u3011 \u516c\u958b\u65e5 \u767b\u9332\u65e5 CVE\u756a\u53f7 NVD \u30d9\u30f3\u30c0\u30fc CVSS v3 CWE \u8106\u5f31\u6027 KEV \u5099\u8003 2025/03/10 2025/01/24 CVE-2025-24813 NVD Apache 9.8(NVD)9.8(CISA-ADP) CWE-44CWE-502 \u30d1\u30b9\u306e\u7b49\u4fa1\u6027: 'file.name' (\u5185\u90e8\u30c9\u30c3\u30c8)\u4fe1\u983c\u3067\u304d\u306a\u3044\u30c7\u30fc\u30bf\u306e\u30c7\u30b7\u30ea\u30a2\u30e9\u30a4\u30bc\u30fc\u30b7\u30e7\u30f3 2025/04/01 Apache Tomcat, PoC \u5b58\u5728 \u3010\u8981\u7d04\u3011 Apache Tomcat\u306eCVE-2025-24813\u8106\u5f31\u6027\u304c\u2026","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fvul.hatenadiary.com%2Fentry%2F2025%2F03%2F17%2F000000_1\" title=\"Apache Tomcat Vulnerability Actively Exploited Just 30 Hours After Public Disclosure - TT \u8106\u5f31\u6027 Blog\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","version":"1.0","author_url":"https://blog.hatena.ne.jp/tanigawa/","categories":["\u30a2\u30d7\u30ea: Apache Tomcat","CVE-2025-24813 (Apache Tomcat)","CWE-502","\u8106\u5f31\u6027: \u4fe1\u983c\u3067\u304d\u306a\u3044\u30c7\u30fc\u30bf\u306e\u30c7\u30b7\u30ea\u30a2\u30e9\u30a4\u30bc\u30fc\u30b7\u30e7\u30f3 / CWE-502"]}