Tomcat Vulnerability CVE-2024-52316

mdichi · April 14, 2025, 2:55am

One of our customers pointed out that this Tomcat vulnerability was found. We have Lucee 5.4.6.9 installed.

I prefer simple fixes. So instead of updating Tomcat, I will try to update Lucee, which I hope will include an updated Tomcat.

Is there an easy way to determine the version of Tomcat included with a Lucee release?

Thanks,
Mike

Zackster · April 14, 2025, 7:15am

mdichi · April 14, 2025, 12:21pm

Is there a date for that release?

Zackster · April 14, 2025, 1:11pm

it’s released, we only post release notes for things which are released

I see the “we are rolling” could be misread, I’ll update it