Vulnerability Assessment for CVE-2025-24813 (Apache Tomcat)

search cancel

Vulnerability Assessment for CVE-2025-24813 (Apache Tomcat)

book

Article ID: 390513

calendar_today

Updated On: 03-25-2025

Products

Endpoint Protection Protection Engine for Cloud Services Protection Engine for NAS

Issue/Introduction

Does the following vulnerability affect Symantec Endpoint Protection Manager (SEPM), SEP client, Live Update Administrator (LUA) and/or Symantec Protection Engine (SPE)?

・CVE-2025-24813

Environment

On Prem SEPM (SEPM) and SEP client 14.3.x
Live Update Administrator (LUA) 2.3.10 and above
SPE 9.x

Resolution

On Prem SEPM, Live Update Administrator (LUA), SPE: No impact. Because Tomcat default servlet is not write-enabled.
SEP client: No impact. Because it does not have Apache Tomcat installed

Additional Information

CRE-20861

Feedback

thumb_up Yes

thumb_down No