CVE-2025-55668 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Session Fixation vulnerability in Apache Tomcat via rewrite valve. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.7, from 10.1.0-M1 through 10.1…
Medium CVSS: 6.5

CVE-2025-55668

Session Fixation vulnerability in Apache Tomcat via rewrite valve.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.7, from 10.1.0-M1 through 10.1.41, from 9.0.0.M1 through 9.0.105.
Older, EOL versions may also be affected.

Users are recommended to upgrade to version 11.0.8, 10.1.42 or 9.0.106, which fix the issue.
Vendor
Apache
Product
Tomcat
CWE
CWE-384
Yayın Tarihi
2025-08-13 14:15:33
Güncelleme
2025-11-04 22:16:30
Source Identifier
security@apache.org
KEV Date Added
-

Kategoriler

CWE-384 Tomcat MEDIUM Apache 2025

Referanslar

https://lists.apache.org/thread/v6bknr96rl7l1qxkl1c03v0qdvbbqs47 http://www.openwall.com/lists/oss-security/2025/08/13/3