CVE-2025-55752

Name of the Vulnerable Software and Affected Versions Apache Tomcat versions 11.0.0-M1 through 11.0.10 Apache Tomcat versions 10.1.0-M1 through 10.1.44 Apache Tomcat versions 9.0.0.M11 through 9.0.108 Apache Tomcat versions 8.5.6 through 8.5.100

Description A relative path traversal flaw exists in Apache Tomcat due to a regression introduced by the fix for bug 60013, where rewritten URLs were normalized before decoding. This allows attackers to manipulate the request URI and bypass security constraints protecting directories like /WEB-INF/ and /META-INF/. If HTTP PUT requests are enabled, malicious files can be uploaded, potentially leading to remote code execution (RCE). While PUT requests are typically restricted to trusted users, the possibility of RCE exists when both the vulnerability and PUT requests are enabled. The issue could also lead to console ANSI injection. Approximately 6.1 million potentially affected devices have been identified.

API Endpoints: No specific API endpoints are mentioned.

Vulnerable Parameters or Variables: No specific parameters or variables are mentioned.

Recommendations Apache Tomcat versions 11.0.11 or later Apache Tomcat versions 10.1.45 or later Apache Tomcat versions 9.0.109 or later