LetsDefend Monitoring Alert

Apache Tomcat RCE Exploitation Detected (CVE-2024-50379)

Jan, 10, 2025, 06:05 PM

Event ID: 312

Event Time: Jan, 10, 2025, 06:05 PM

Rule Name: SOC334 - Apache Tomcat RCE Exploitation Detected (CVE-2024-50379)

Alert Type: Web Attack

MITRE Technique:
T1190 - Initial Access - Exploit Public-Facing Application,

Real World Example:Time-of-check Time-of-use (TOCTOU) Race Condition vuln in Tomcat Detected (CVE-2024-50379)

Severity: Critical

Incident Responder

2025 © LetsDefend

45305 Catalina ct. Suite 150, Sterling VA 20166