Apache TomcatÔ¶³ÌÃüÁîÖ´ÐЩ¶´À´Ï®£¨CVE-2025-24813£©£¬mansion88Ã÷ÉýÌṩ½â¾ö·½°¸
·¢²¼Ê±¼ä 2025-03-13Apache TomcatÊÇÒ»¸ö¿ªÔ´µÄJava ServletÈÝÆ÷£¬¹ã·ºÓÃÓÚÔËÐÐJava WebÓ¦ÓóÌÐò¡£ËüʵÏÖÁËJava ServletºÍJavaServer Pages¼¼Êõ£¬ÌṩÁËÒ»¸öÔËÐл·¾³À´´¦ÀíHTTPÇëÇó¡¢Éú³É¶¯Ì¬ÍøÒ³£¬²¢Ö§³ÖWebSocketͨÐÅ¡£TomcatÒÔÆäÎȶ¨ÐÔ¡¢Áé»îÐÔºÍÒ×ÓÃÐÔ¶øÊܵ½¿ª·¢ÕßµÄÇàíù£¬ÊÇ¿ª·¢ºÍ²¿ÊðJava WebÓ¦ÓõÄÖØÒª¹¤¾ßÖ®Ò»¡£
2025Äê3Ô£¬mansion88Ã÷Éý¼à¿Øµ½Apache¹Ù·½·¢²¼Â©¶´·çÏÕͨ¸æ£¬¸Ã©¶´Ó°ÏìÆôÓÃÁËPartial PUTºÍDefaultServletдÈëȨÏ޵Ļ·¾³£¬¿ÉÄܵ¼Ö¹¥»÷ÕßÈÆ¹ý·¾¶Ð£Ñé·ÃÎÊÃô¸ÐÎļþ»òдÈëÌØ¶¨ÎļþÒÔÖ´ÐжñÒâµÄ·´ÐòÁл¯µ¼Ö´úÂëÖ´ÐС£
©¶´±àºÅ | CVE-2025-24813 | |
©¶´ÆÀ¹À
| ©¶´ÀûÓÃÄÑ¶È | ÖÐ |
©¶´ÀûÓÃÌõ¼þ | 11.0.0-M1 ¡Ü Apache Tomcat ¡Ü 11.0.2 10.1.0-M1 ¡Ü Apache Tomcat ¡Ü 10.1.34 9.0.0.M1 ¡Ü Apache Tomcat ¡Ü 9.0.98 | |
©¶´ÀàÐÍ | ÃüÁîÖ´ÐÐ | |
¹«¿ª³Ì¶È | POCδ¹«¿ª | |
©¶´¸´ÏÖ½ØÍ¼


¼ì²â·½·¨
½øÈëTomcat°²×°Ä¿Â¼µÄbinĿ¼£¬ÔËÐÐversion.bat£¨LinuxÔËÐÐversion.sh£©ºó£¬¿É²é¿´µ±Ç°µÄÈí¼þ°æ±¾ºÅ¡£
Ó°Ïì°æ±¾
11.0.0-M1 ¡Ü Apache Tomcat ¡Ü 11.0.2
10.1.0-M1 ¡Ü Apache Tomcat ¡Ü 10.1.34
9.0.0.M1 ¡Ü Apache Tomcat ¡Ü 9.0.98
ÐÞ¸´½¨Òé
1. ½ûÖ¹partial PUT£ºÔÚ conf/web.xml ÖÐÐÞ¸Ä allowPartialPut ²ÎÊýΪfalse£¬ÖØÆô Tomcat ÒÔʹÅäÖÃÉúЧ¡£
2. Ñϸñ¿ØÖÆ DefaultServlet дÈëȨÏÞ£ºÈ·±£ readonly=true£¬½ûÓÃËùÓÐδ¾ÊÚȨµÄ PUT/DELETE ÇëÇ󣬽öÔÊÐí¿ÉÐÅÀ´Ô´·ÃÎÊÊÜÏÞĿ¼¡£
Ò»¡¢¹Ù·½ÐÞ¸´·½°¸£º
Ŀǰ¹Ù·½ÒÑ·¢²¼°²È«¸üУ¬½¨ÒéÓû§¾¡¿ìÉý¼¶ÖÁ×îа汾£º
Apache Tomcat >=11.0.3
Apache Tomcat >=10.1.35
Apache Tomcat >=9.0.99
¹Ù·½²¹¶¡ÏÂÔØµØÖ·£º
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-9.html
¶þ¡¢mansion88Ã÷Éý·½°¸£º
1¡¢mansion88Ã÷Éý¼ì²âÀà²úÆ··½°¸
ÌìãÙÈëÇÖ¼ì²âÓë¹ÜÀíϵͳ£¨IDS£©¡¢ÌìãÙ³¬Èںϼì²â̽Õ루CSP£©¡¢ÌìãÙÍþв·ÖÎöÒ»Ìå»ú£¨TAR£©¡¢ÌìÇåWEB°²È«Ó¦ÓÃÍø¹Ø£¨WAF£©¡¢ÌìÇåÈëÇÖ·ÀÓùϵͳ£¨IPS£©£¬Éý¼¶µ½×îа汾¼´¿ÉÓÐЧ¼ì²â»ò·À»¤¸Ã©¶´Ôì³ÉµÄ¹¥»÷·çÏÕ¡£
ʼþ¿âÏÂÔØµØÖ·£ºhttps://venustech.download.venuscloud.cn/
2¡¢mansion88Ã÷Éý©ɨ²úÆ··½°¸
£¨1£©¡°mansion88Ã÷Éý©¶´É¨ÃèϵͳV6.0¡±²úÆ·ÒÑÖ§³Ö¶Ô¸Ã©¶´½øÐÐɨÃè¡£

£¨2£©mansion88Ã÷Éý©¶´É¨Ãèϵͳ608XϵÁа汾ÒÑÖ§³Ö¶Ô¸Ã©¶´½øÐÐɨÃè¡£

3¡¢mansion88Ã÷Éý×ʲúÓë´àÈõÐÔ¹ÜÀíÆ½Ì¨²úÆ··½°¸
mansion88Ã÷Éý×ʲúÓë´àÈõÐÔ¹ÜÀíÆ½Ì¨ÊµÊ±²É¼¯²¢¸üÐÂÇ鱨ÐÅÏ¢£¬¶ÔÈë¿â×ʲúApache TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)½øÐйÜÀí¡£

4¡¢mansion88Ã÷Éý°²È«¹ÜÀíºÍÌ¬ÊÆ¸Ð֪ƽ̨²úÆ··½°¸
Óû§¿ÉÒÔͨ¹ýÌ©ºÏ°²È«¹ÜÀíºÍÌ¬ÊÆ¸Ð֪ƽ̨£¬½øÐйØÁª²ßÂÔÅäÖ㬽áºÏʵ¼Ê»·¾³ÖÐϵͳÈÕÖ¾ºÍ°²È«É豸µÄ¸æ¾¯ÐÅÏ¢½øÐгÖÐø¼à¿Ø£¬´Ó¶ø·¢ÏÖ¡°Apache TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)¡±µÄ©¶´ÀûÓù¥»÷ÐÐΪ¡£
1£©ÔÚÌ©ºÏµÄƽ̨ÖУ¬Í¨¹ý´àÈõÐÔ·¢ÏÖ¹¦ÄÜÕë¶Ô¡°Apache TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)¡±Â©¶´É¨ÃèÈÎÎñ£¬ÅŲé¹ÜÀíÍøÂçÖÐÊÜ´Ë©¶´Ó°ÏìµÄÖØÒª×ʲú£»

2£©Æ½Ì¨¡°¹ØÁª·ÖÎö¡±Ä£¿éÖУ¬Ìí¼Ó¡°L2_Apache_TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)¡±£¬Í¨¹ýmansion88Ã÷Éý¼ì²âÉ豸¡¢Ä¿±êÖ÷»úϵͳµÈÉ豸µÄ¸æ¾¯ÈÕÖ¾£¬·¢ÏÖÍⲿ¹¥»÷ÐÐΪ£º

ͨ¹ý·ÖÎö¹æÔò×Ô¶¯½«"L2_Apache_TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)"©¶´ÀûÓõĿÉÒÉÐÐΪԴµØÖ·Ìí¼Óµ½¹Û²ìÁÐ±í¡°¸ß·çÏÕÁ¬½Ó¡±ÖУ¬×÷ΪÄÚ²¿Ç鱨Êý¾ÝʹÓã»
3£©Ìí¼Ó¡°L3_Apache_TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)¡±£¬Ìõ¼þÈÕÖ¾Ãû³ÆµÈÓÚ»ò°üº¬¡°L2_Apache_TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)¡±£¬¹¥»÷½á¹ûµÈÓÚ¡°¹¥»÷³É¹¦¡±£¬Ä¿µÄµØÖ·ÒýÓÃ×ʲú©¶´»òÔ´µØÖ·Æ¥ÅäÍþвÇ鱨£¬´Ó¶øÌáÉý¹ØÁª¹æÔòµÄÖÃÐŶȡ£

4£©ATT&CK¹¥»÷Á´Ìõ·ÖÎöÓëSOAR´¦Öý¨Òé
¸ù¾Ý¶ÔApache TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)µÄ¹¥»÷ÀûÓùý³Ì½øÐзÖÎö£¬¹¥»÷Á´Éæ¼°¶à¸öATT&CKÕ½ÊõºÍ¼¼Êõ½×¶Î£¬¸²¸ÇµÄTTP°üÀ¨£º
TA0001-³õʼ·ÃÎÊ£ºT1190-ÀûÓù«¿ªµÄÓ¦Ó÷þÎñ
TA0008-ºáÏòÒÆ¶¯£ºT1210-Ô¶³Ì·þÎñ©¶´ÀûÓÃ
TA0011-ÃüÁîÓë¿ØÖÆ£ºT1105-Èë¿Ú¹¤¾ß×ªÒÆ
TA0040-Ó°Ï죺T1485-Êý¾ÝÆÆ»µ

ͨ¹ýÌ©ºÏ°²È«¹ÜÀíºÍÌ¬ÊÆ¸Ð֪ƽ̨ÄÚÖÃSOAR×Ô¶¯»¯»ò°ë×Ô¶¯»¯±àÅÅÁª¶¯ÏìÓ¦´¦ÖÃÄÜÁ¦£¬Õë¶Ô¸Ã©¶´ÀûÓõĸ澯ʼþ±àÅž籾£¬½øÐÐ×Ô¶¯»¯´¦Öá£
5¡¢mansion88Ã÷ÉýÖն˲úÆ··½°¸
Ìì«‘Öն˰²È«Ò»Ì廯£¨EDR£©Ìṩ©¶´µÄרÏîÑéÖ¤¼ì²éÄÜÁ¦¿É¶Ô©¶´×¤ÁôÖն˽øÐÐÈ«ÍøÍ¬²½ÑéÖ¤£¬Æ¥Åä©¶´×ʲú£¬Ô¤·À©¶´¹¥»÷·çÏÕ¡£



¾©¹«Íø°²±¸11010802024551ºÅ