Apache TomcatÔ¶³ÌÃüÁîÖ´ÐЩ¶´À´Ï®£¨CVE-2025-24813£©£¬mansion88Ã÷ÉýÌṩ½â¾ö·½°¸

·¢²¼Ê±¼ä 2025-03-13

Apache TomcatÊÇÒ»¸ö¿ªÔ´µÄJava ServletÈÝÆ÷£¬¹ã·ºÓÃÓÚÔËÐÐJava WebÓ¦ÓóÌÐò¡£ËüʵÏÖÁËJava ServletºÍJavaServer Pages¼¼Êõ£¬ÌṩÁËÒ»¸öÔËÐл·¾³À´´¦ÀíHTTPÇëÇó¡¢Éú³É¶¯Ì¬ÍøÒ³£¬²¢Ö§³ÖWebSocketͨÐÅ¡£TomcatÒÔÆäÎȶ¨ÐÔ¡¢Áé»îÐÔºÍÒ×ÓÃÐÔ¶øÊܵ½¿ª·¢ÕßµÄÇàíù£¬ÊÇ¿ª·¢ºÍ²¿ÊðJava WebÓ¦ÓõÄÖØÒª¹¤¾ßÖ®Ò»¡£


2025Äê3Ô£¬mansion88Ã÷Éý¼à¿Øµ½Apache¹Ù·½·¢²¼Â©¶´·çÏÕͨ¸æ£¬¸Ã©¶´Ó°ÏìÆôÓÃÁËPartial PUTºÍDefaultServletдÈëȨÏ޵Ļ·¾³£¬¿ÉÄܵ¼Ö¹¥»÷ÕßÈÆ¹ý·¾¶Ð£Ñé·ÃÎÊÃô¸ÐÎļþ»òдÈëÌØ¶¨ÎļþÒÔÖ´ÐжñÒâµÄ·´ÐòÁл¯µ¼Ö´úÂëÖ´ÐС£


©¶´±àºÅ

CVE-2025-24813

©¶´ÆÀ¹À

 

©¶´ÀûÓÃÄѶÈ

ÖÐ

©¶´ÀûÓÃÌõ¼þ

11.0.0-M1 ¡Ü Apache Tomcat ¡Ü 11.0.2

10.1.0-M1 ¡Ü Apache Tomcat ¡Ü 10.1.34

9.0.0.M1 ¡Ü Apache Tomcat ¡Ü 9.0.98

©¶´ÀàÐÍ

ÃüÁîÖ´ÐÐ

¹«¿ª³Ì¶È

POCδ¹«¿ª


©¶´¸´ÏÖ½ØÍ¼

 

ͼƬ1.png


ͼƬ2.png

 

¼ì²â·½·¨


½øÈëTomcat°²×°Ä¿Â¼µÄbinĿ¼£¬ÔËÐÐversion.bat£¨LinuxÔËÐÐversion.sh£©ºó£¬¿É²é¿´µ±Ç°µÄÈí¼þ°æ±¾ºÅ¡£


Ó°Ïì°æ±¾


11.0.0-M1 ¡Ü Apache Tomcat ¡Ü 11.0.2

10.1.0-M1 ¡Ü Apache Tomcat ¡Ü 10.1.34

9.0.0.M1 ¡Ü Apache Tomcat ¡Ü 9.0.98


ÐÞ¸´½¨Òé


1. ½ûÖ¹partial PUT£ºÔÚ conf/web.xml ÖÐÐÞ¸Ä allowPartialPut ²ÎÊýΪfalse£¬ÖØÆô Tomcat ÒÔʹÅäÖÃÉúЧ¡£

2. Ñϸñ¿ØÖÆ DefaultServlet дÈëȨÏÞ£ºÈ·±£ readonly=true£¬½ûÓÃËùÓÐδ¾­ÊÚȨµÄ PUT/DELETE ÇëÇ󣬽öÔÊÐí¿ÉÐÅÀ´Ô´·ÃÎÊÊÜÏÞĿ¼¡£


Ò»¡¢¹Ù·½ÐÞ¸´·½°¸£º


Ŀǰ¹Ù·½ÒÑ·¢²¼°²È«¸üУ¬½¨ÒéÓû§¾¡¿ìÉý¼¶ÖÁ×îа汾£º

Apache Tomcat >=11.0.3

Apache Tomcat >=10.1.35

Apache Tomcat >=9.0.99


¹Ù·½²¹¶¡ÏÂÔØµØÖ·£º

https://tomcat.apache.org/security-11.html

https://tomcat.apache.org/security-10.html

https://tomcat.apache.org/security-9.html


¶þ¡¢mansion88Ã÷Éý·½°¸£º


1¡¢mansion88Ã÷Éý¼ì²âÀà²úÆ··½°¸


ÌìãÙÈëÇÖ¼ì²âÓë¹ÜÀíϵͳ£¨IDS£©¡¢ÌìãÙ³¬Èںϼì²â̽Õ루CSP£©¡¢ÌìãÙÍþв·ÖÎöÒ»Ìå»ú£¨TAR£©¡¢ÌìÇåWEB°²È«Ó¦ÓÃÍø¹Ø£¨WAF£©¡¢ÌìÇåÈëÇÖ·ÀÓùϵͳ£¨IPS£©£¬Éý¼¶µ½×îа汾¼´¿ÉÓÐЧ¼ì²â»ò·À»¤¸Ã©¶´Ôì³ÉµÄ¹¥»÷·çÏÕ¡£


ʼþ¿âÏÂÔØµØÖ·£ºhttps://venustech.download.venuscloud.cn/


2¡¢mansion88Ã÷Éý©ɨ²úÆ··½°¸


£¨1£©¡°mansion88Ã÷Éý©¶´É¨ÃèϵͳV6.0¡±²úÆ·ÒÑÖ§³Ö¶Ô¸Ã©¶´½øÐÐɨÃè¡£

 

ͼƬ3.png


£¨2£©mansion88Ã÷Éý©¶´É¨Ãèϵͳ608XϵÁа汾ÒÑÖ§³Ö¶Ô¸Ã©¶´½øÐÐɨÃè¡£

 

ͼƬ4.png


3¡¢mansion88Ã÷Éý×ʲúÓë´àÈõÐÔ¹ÜÀíÆ½Ì¨²úÆ··½°¸


mansion88Ã÷Éý×ʲúÓë´àÈõÐÔ¹ÜÀíÆ½Ì¨ÊµÊ±²É¼¯²¢¸üÐÂÇ鱨ÐÅÏ¢£¬¶ÔÈë¿â×ʲúApache TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)½øÐйÜÀí¡£

 

ͼƬ5.png


4¡¢mansion88Ã÷Éý°²È«¹ÜÀíºÍÌ¬ÊÆ¸Ð֪ƽ̨²úÆ··½°¸


Óû§¿ÉÒÔͨ¹ýÌ©ºÏ°²È«¹ÜÀíºÍÌ¬ÊÆ¸Ð֪ƽ̨£¬½øÐйØÁª²ßÂÔÅäÖ㬽áºÏʵ¼Ê»·¾³ÖÐϵͳÈÕÖ¾ºÍ°²È«É豸µÄ¸æ¾¯ÐÅÏ¢½øÐгÖÐø¼à¿Ø£¬´Ó¶ø·¢ÏÖ¡°Apache TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)¡±µÄ©¶´ÀûÓù¥»÷ÐÐΪ¡£


1£©ÔÚÌ©ºÏµÄƽ̨ÖУ¬Í¨¹ý´àÈõÐÔ·¢ÏÖ¹¦ÄÜÕë¶Ô¡°Apache TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)¡±Â©¶´É¨ÃèÈÎÎñ£¬ÅŲé¹ÜÀíÍøÂçÖÐÊÜ´Ë©¶´Ó°ÏìµÄÖØÒª×ʲú £»

 

ͼƬ6.png


2£©Æ½Ì¨¡°¹ØÁª·ÖÎö¡±Ä £¿éÖУ¬Ìí¼Ó¡°L2_Apache_TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)¡±£¬Í¨¹ýmansion88Ã÷Éý¼ì²âÉ豸¡¢Ä¿±êÖ÷»úϵͳµÈÉ豸µÄ¸æ¾¯ÈÕÖ¾£¬·¢ÏÖÍⲿ¹¥»÷ÐÐΪ£º


ͼƬ7.png

 

ͨ¹ý·ÖÎö¹æÔò×Ô¶¯½«"L2_Apache_TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)"©¶´ÀûÓõĿÉÒÉÐÐΪԴµØÖ·Ìí¼Óµ½¹Û²ìÁÐ±í¡°¸ß·çÏÕÁ¬½Ó¡±ÖУ¬×÷ΪÄÚ²¿Ç鱨Êý¾ÝʹÓà £»


3£©Ìí¼Ó¡°L3_Apache_TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)¡±£¬Ìõ¼þÈÕÖ¾Ãû³ÆµÈÓÚ»ò°üº¬¡°L2_Apache_TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)¡±£¬¹¥»÷½á¹ûµÈÓÚ¡°¹¥»÷³É¹¦¡±£¬Ä¿µÄµØÖ·ÒýÓÃ×ʲú©¶´»òÔ´µØÖ·Æ¥ÅäÍþвÇ鱨£¬´Ó¶øÌáÉý¹ØÁª¹æÔòµÄÖÃÐŶÈ¡£

 

ͼƬ8.png


4£©ATT&CK¹¥»÷Á´Ìõ·ÖÎöÓëSOAR´¦Öý¨Òé


¸ù¾Ý¶ÔApache TomcatÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2025-24813)µÄ¹¥»÷ÀûÓùý³Ì½øÐзÖÎö£¬¹¥»÷Á´Éæ¼°¶à¸öATT&CKÕ½ÊõºÍ¼¼Êõ½×¶Î£¬¸²¸ÇµÄTTP°üÀ¨£º


TA0001-³õʼ·ÃÎÊ£ºT1190-ÀûÓù«¿ªµÄÓ¦Ó÷þÎñ

TA0008-ºáÏòÒÆ¶¯£ºT1210-Ô¶³Ì·þÎñ©¶´ÀûÓÃ

TA0011-ÃüÁîÓë¿ØÖÆ£ºT1105-Èë¿Ú¹¤¾ß×ªÒÆ

TA0040-Ó°Ï죺T1485-Êý¾ÝÆÆ»µ

±í1.jpg

ͨ¹ýÌ©ºÏ°²È«¹ÜÀíºÍÌ¬ÊÆ¸Ð֪ƽ̨ÄÚÖÃSOAR×Ô¶¯»¯»ò°ë×Ô¶¯»¯±àÅÅÁª¶¯ÏìÓ¦´¦ÖÃÄÜÁ¦£¬Õë¶Ô¸Ã©¶´ÀûÓõĸ澯ʼþ±àÅž籾£¬½øÐÐ×Ô¶¯»¯´¦Öá£


5¡¢mansion88Ã÷ÉýÖն˲úÆ··½°¸


Ìì«‘Öն˰²È«Ò»Ì廯£¨EDR£©Ìṩ©¶´µÄרÏîÑéÖ¤¼ì²éÄÜÁ¦¿É¶Ô©¶´×¤ÁôÖն˽øÐÐÈ«ÍøÍ¬²½ÑéÖ¤£¬Æ¥Åä©¶´×ʲú£¬Ô¤·À©¶´¹¥»÷·çÏÕ¡£

 

 Í¼Æ¬9.png