/
CVE-2024-50379 and CVE-2024-56337 Apache Tomcat Remote Code Execution Vulnerability

CVE-2024-50379 and CVE-2024-56337 Apache Tomcat Remote Code Execution Vulnerability

Owned by Knowledge Assistant
Jan 02, 2025
1 min read
Description of Issue

Apache Tomcat vulnerability that can allow Remote Code Execution via write enabled Default Servlet.

Context

  • Content Manager

  • Vulnerability

  • Apache

Cause

Originally identified under CVE-2024-50379. Further mitigation was needed and an updated CVE for this is under CVE-2024-56337.

Resolution

Update Content Manager to the lastest 2024.1 version or newer.

Additional Information

https://tylercommunity.tylertech.com/content-manager/b/weblog1/posts/tomcat-reported-vulnerabilities

https://tylercommunity.tylertech.com/content-manager/w/documentation-wiki/21530/release-lifecycle