https://connect.hyland.com/t5/alfresco-forum/cve-2025-24813-tomcat-vulnerability/m-p/488410#M40007 <P>This vulnerability has <STRONG>no impact</STRONG> in Alfresco products when configured with out of the box settings.&nbsp;</P> <P>However, u<SPAN>sers are recommended to upgrade to version 11.0.3, 10.1.35 or 9.0.98, which fixes the issue.</SPAN></P> Fri, 28 Mar 2025 07:09:18 GMT angelborroy 2025-03-28T07:09:18Z https://connect.hyland.com/t5/alfresco-forum/cve-2025-24813-tomcat-vulnerability/m-p/488404#M40006 <P>Currently running 7.4.1.3 which is running Tomcat 9.0.87 which is flagged as vulnerable to the CVE-2025-24813 RCE vulnerability.</P><P>Has Hyland or the community reviewed Alfresco to determine whether it is vulnerable?</P><P>&nbsp;</P><P><A href="https://nvd.nist.gov/vuln/detail/CVE-2025-24813" target="_blank" rel="noopener">https://nvd.nist.gov/vuln/detail/CVE-2025-24813</A></P> Thu, 27 Mar 2025 19:33:26 GMT https://connect.hyland.com/t5/alfresco-forum/cve-2025-24813-tomcat-vulnerability/m-p/488404#M40006 cmanar-TM 2025-03-27T19:33:26Z https://connect.hyland.com/t5/alfresco-forum/cve-2025-24813-tomcat-vulnerability/m-p/488410#M40007 <P>This vulnerability has <STRONG>no impact</STRONG> in Alfresco products when configured with out of the box settings.&nbsp;</P> <P>However, u<SPAN>sers are recommended to upgrade to version 11.0.3, 10.1.35 or 9.0.98, which fixes the issue.</SPAN></P> Fri, 28 Mar 2025 07:09:18 GMT https://connect.hyland.com/t5/alfresco-forum/cve-2025-24813-tomcat-vulnerability/m-p/488410#M40007 angelborroy 2025-03-28T07:09:18Z