/
CVE-2024-50379 and CVE-2024-56337 Apache Tomcat Remote Code Execution Vulnerability

CVE-2024-50379 and CVE-2024-56337 Apache Tomcat Remote Code Execution Vulnerability

Owned by Knowledge Assistant
Jan 02, 2025
1 min read
Description of Issue

Apache Tomcat vulnerability that can allow Remote Code Execution via write enabled Default Servlet.

Context

  • Content Manager

  • Vulnerability

  • Apache

Cause

Originally identified under CVE-2024-50379. Further mitigation was needed and an updated CVE for this is under CVE-2024-56337.

Resolution

Update Content Manager to the lastest 2024.1 version or newer.

Additional Information

https://tylercommunity.tylertech.com/content-manager/b/weblog1/posts/tomcat-reported-vulnerabilities

https://tylercommunity.tylertech.com/content-manager/w/documentation-wiki/21530/release-lifecycle









Related content

Apache Struts Security Vulnerability
Apache Struts Security Vulnerability
Knowledge Assistant
More like this
Verify Apache Tomcat Version
Verify Apache Tomcat Version
Knowledge Assistant
More like this
Content Manager Upgrade Fails On Rename And Edit Tomcat Files Step - Cannot Find Path
Content Manager Upgrade Fails On Rename And Edit Tomcat Files Step - Cannot Find Path
Knowledge Assistant
More like this
Apache Tomcat Logs for Content Manager
Apache Tomcat Logs for Content Manager
Knowledge Assistant
More like this
Content Manager Deployment Fails On Enable Service Control For Service Account
Content Manager Deployment Fails On Enable Service Control For Service Account
Knowledge Assistant
More like this
TCM down after 2023.3.1 upgrade
TCM down after 2023.3.1 upgrade
Knowledge Assistant
More like this