Threat Actors Rapidly Exploit New Apache Tomcat Flaw Following PoC Release

Malicious actors have begun exploiting a recently disclosed vulnerability in Apache Tomcat, identified under the code CVE-2025-24813, just 30 hours after the publication of a PoC exploit code. This flaw, which allows remote code execution, is due to a path equivalence in Apache Tomcat. The vulnerability is actively being exploited, highlighting the speed at which threats can evolve following the public disclosure of an exploit.