Good day everyone,

Checking in to see if anyone has proceeded to upgrade and validate their Tomcat installation to the latest release addressing this vulnerability?

[SECURITY] CVE-2025-24813 Potential RCE and/or information disclosure and/or information corruption with partial PUT-Apache Mail Archives

We have used 9.0.58 and are looking to upgrade to 9.0.99.  I'm looking to see if I can anything from Genesys to acknowledge or address this.

Kind Regards,

Mike.

Good day everyone,

Checking in to see if anyone has proceeded to upgrade and validate their Tomcat installation to the latest release addressing this vulnerability?

[SECURITY] CVE-2025-24813 Potential RCE and/or information disclosure and/or information corruption with partial PUT-Apache Mail Archives

We have used 9.0.58 and are looking to upgrade to 9.0.99.  I'm looking to see if I can anything from Genesys to acknowledge or address this.

Kind Regards,

Mike.

We've been having to upgrade all of our Tomcat's every time there's a critical & high CVE. With the exception of GCXI, we're in the process of upgrading everything from 9.0.98 to 9.0.102. Like Tony, GRAT, GRE, Routing/Composer Web, and other non-Engage apps.

Good day everyone,

Checking in to see if anyone has proceeded to upgrade and validate their Tomcat installation to the latest release addressing this vulnerability?

[SECURITY] CVE-2025-24813 Potential RCE and/or information disclosure and/or information corruption with partial PUT-Apache Mail Archives

We have used 9.0.58 and are looking to upgrade to 9.0.99.  I'm looking to see if I can anything from Genesys to acknowledge or address this.

Kind Regards,

Mike.

We've been having to upgrade all of our Tomcat's every time there's a critical & high CVE. With the exception of GCXI, we're in the process of upgrading everything from 9.0.98 to 9.0.102. Like Tony, GRAT, GRE, Routing/Composer Web, and other non-Engage apps.

Good day everyone,

Checking in to see if anyone has proceeded to upgrade and validate their Tomcat installation to the latest release addressing this vulnerability?

[SECURITY] CVE-2025-24813 Potential RCE and/or information disclosure and/or information corruption with partial PUT-Apache Mail Archives

We have used 9.0.58 and are looking to upgrade to 9.0.99.  I'm looking to see if I can anything from Genesys to acknowledge or address this.

Kind Regards,

Mike.

Hello Karl, when you did your apache upgrade, did you have to pay any particular attention to the GART or GRE components? are there any folders or files you needed to copy to the new Tomcat folder? I am planning to upgrade iWD from Apache Tomcat 9.0.5 to 9.0.99. Thanks.

We've been having to upgrade all of our Tomcat's every time there's a critical & high CVE. With the exception of GCXI, we're in the process of upgrading everything from 9.0.98 to 9.0.102. Like Tony, GRAT, GRE, Routing/Composer Web, and other non-Engage apps.

Good day everyone,

Checking in to see if anyone has proceeded to upgrade and validate their Tomcat installation to the latest release addressing this vulnerability?

[SECURITY] CVE-2025-24813 Potential RCE and/or information disclosure and/or information corruption with partial PUT-Apache Mail Archives

We have used 9.0.58 and are looking to upgrade to 9.0.99.  I'm looking to see if I can anything from Genesys to acknowledge or address this.

Kind Regards,

Mike.

On our end there was nothing really out of the ordinary for either GRAT or GRE. We do have GRE & GRAT co-located on one of the nodes, so it's what we would expect, port adjustments and GRAT needing the SQL driver.

Hello Karl, when you did your apache upgrade, did you have to pay any particular attention to the GART or GRE components? are there any folders or files you needed to copy to the new Tomcat folder? I am planning to upgrade iWD from Apache Tomcat 9.0.5 to 9.0.99. Thanks.

We've been having to upgrade all of our Tomcat's every time there's a critical & high CVE. With the exception of GCXI, we're in the process of upgrading everything from 9.0.98 to 9.0.102. Like Tony, GRAT, GRE, Routing/Composer Web, and other non-Engage apps.

Good day everyone,

Checking in to see if anyone has proceeded to upgrade and validate their Tomcat installation to the latest release addressing this vulnerability?

[SECURITY] CVE-2025-24813 Potential RCE and/or information disclosure and/or information corruption with partial PUT-Apache Mail Archives

We have used 9.0.58 and are looking to upgrade to 9.0.99.  I'm looking to see if I can anything from Genesys to acknowledge or address this.

Kind Regards,

Mike.