Thank you Tony and Karl for the fast responses, for this environment, it is primarily for Routing application services.
Regards,
Mike.
------------------------------
Michael Silverman
VP Operations
------------------------------
Original Message:
Sent: 03-21-2025 08:05
From: Karl Theurer
Subject: Tomcat Vulnerability - CVE-2025-24813
We've been having to upgrade all of our Tomcat's every time there's a critical & high CVE. With the exception of GCXI, we're in the process of upgrading everything from 9.0.98 to 9.0.102. Like Tony, GRAT, GRE, Routing/Composer Web, and other non-Engage apps.
------------------------------
Karl Theurer
NA
Original Message:
Sent: 03-20-2025 15:02
From: Michael Silverman
Subject: Tomcat Vulnerability - CVE-2025-24813
Good day everyone,
Checking in to see if anyone has proceeded to upgrade and validate their Tomcat installation to the latest release addressing this vulnerability?
[SECURITY] CVE-2025-24813 Potential RCE and/or information disclosure and/or information corruption with partial PUT-Apache Mail Archives
We have used 9.0.58 and are looking to upgrade to 9.0.99. I'm looking to see if I can anything from Genesys to acknowledge or address this.
Kind Regards,
Mike.
#RoutingandOrchestration(ACD/IVR)
#SecurityandCompliance
------------------------------
Michael Silverman
VP Operations
------------------------------