-
Course
- Security
Unauthenticated Remote Code Execution in Apache Tomcat CVE-2025-24813: What You Should Know
Discover the key information you need to know about CVE-2025-24813, an unauthenticated remote code execution vulnerability in Apache Tomcat’s partial PUT feature.
What you'll learn
CVE-2025-24813 is an unauthenticated remote code execution vulnerability in Apache Tomcat’s partial PUT feature. Under certain circumstances, successful exploitation allows attackers to execute code remotely on target systems via unsafe deserialization. This course will give you a clear understanding of this vulnerability, its potential impact, and the urgency of applying the newly released patches. We will walk through the security implications for affected systems, explore risk mitigation strategies, and provide actionable steps to safeguard your organization against exploitation.
About the authors
Matt has a degree in Chemical engineering and a PhD in mathematical chemistry. He is also a GIAC certified incident handler and penetration tester and has regulated cyber security in the UK civil nuclear sector for many years.
More Courses by Matthew
Michael Teske is an Author Evangelist with Pluralsight helping people elevate their skills. He has 20+ years of experience in IT Ops, including 17 as an IT instructor at a community college.
More Courses by Michael