Red Hat Security Advisory: tomcat security update
Two security vulnerabilities have been identified in Apache Tomcat as packaged by Red Hat Enterprise Linux 8. These include a bypass of rules in the Rewrite Valve (CVE-2025-31651) and a directory traversal vulnerability via rewrite that may allow remote code execution (CVE-2025-55752). Red Hat has issued an important security update to address these issues in Tomcat version 9. 0. 87-1. el8_10. 7. The update is available for multiple architectures including x86_64, s390x, ppc64le, and aarch64. Users of affected Red Hat Enterprise Linux 8 versions should apply the update to mitigate these vulnerabilities.
AI Analysis
Technical Summary
This advisory covers two vulnerabilities in Apache Tomcat as distributed in Red Hat Enterprise Linux 8. CVE-2025-31651 involves a bypass of rules in the Tomcat Rewrite Valve, potentially allowing unintended request handling. CVE-2025-55752 is a directory traversal vulnerability via rewrite functionality that could lead to remote code execution. Red Hat has released updated Tomcat packages (version 9.0.87-1.el8_10.7) that fix these issues. The advisory references Red Hat's official errata RHSA-2025:23048 and provides links to updated RPM packages for various architectures. No CVSS scores are provided, but the severity is rated as Important by Red Hat Product Security.
Potential Impact
Successful exploitation of CVE-2025-31651 could allow attackers to bypass rewrite rules, potentially leading to unauthorized request processing. CVE-2025-55752 could allow an attacker to perform directory traversal via the rewrite mechanism, which may result in remote code execution. These vulnerabilities affect the security and integrity of Apache Tomcat servers running vulnerable versions, potentially allowing attackers to execute arbitrary code or bypass security controls.
Mitigation Recommendations
Red Hat has released updated Tomcat packages (version 9.0.87-1.el8_10.7) that address these vulnerabilities. Users should apply the official Red Hat security update as detailed in advisory RHSA-2025:23048 and the article https://access.redhat.com/articles/11258. No additional mitigation steps are indicated by the vendor advisory. Applying the update will remediate the vulnerabilities.
Red Hat Security Advisory: tomcat security update
Description
Two security vulnerabilities have been identified in Apache Tomcat as packaged by Red Hat Enterprise Linux 8. These include a bypass of rules in the Rewrite Valve (CVE-2025-31651) and a directory traversal vulnerability via rewrite that may allow remote code execution (CVE-2025-55752). Red Hat has issued an important security update to address these issues in Tomcat version 9. 0. 87-1. el8_10. 7. The update is available for multiple architectures including x86_64, s390x, ppc64le, and aarch64. Users of affected Red Hat Enterprise Linux 8 versions should apply the update to mitigate these vulnerabilities.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory covers two vulnerabilities in Apache Tomcat as distributed in Red Hat Enterprise Linux 8. CVE-2025-31651 involves a bypass of rules in the Tomcat Rewrite Valve, potentially allowing unintended request handling. CVE-2025-55752 is a directory traversal vulnerability via rewrite functionality that could lead to remote code execution. Red Hat has released updated Tomcat packages (version 9.0.87-1.el8_10.7) that fix these issues. The advisory references Red Hat's official errata RHSA-2025:23048 and provides links to updated RPM packages for various architectures. No CVSS scores are provided, but the severity is rated as Important by Red Hat Product Security.
Potential Impact
Successful exploitation of CVE-2025-31651 could allow attackers to bypass rewrite rules, potentially leading to unauthorized request processing. CVE-2025-55752 could allow an attacker to perform directory traversal via the rewrite mechanism, which may result in remote code execution. These vulnerabilities affect the security and integrity of Apache Tomcat servers running vulnerable versions, potentially allowing attackers to execute arbitrary code or bypass security controls.
Mitigation Recommendations
Red Hat has released updated Tomcat packages (version 9.0.87-1.el8_10.7) that address these vulnerabilities. Users should apply the official Red Hat security update as detailed in advisory RHSA-2025:23048 and the article https://access.redhat.com/articles/11258. No additional mitigation steps are indicated by the vendor advisory. Applying the update will remediate the vulnerabilities.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:23048
- Cve Count
- 2
- Additional Cves
- ["CVE-2025-55752"]
- Cvss Version
- null
Threat ID: 6a2929b98dd33fbd8517f4bf
Added to database: 6/10/2026, 9:09:13 AM
Last enriched: 6/10/2026, 9:11:50 AM
Last updated: 6/10/2026, 10:33:58 AM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.