SpringBoot Tomcat漏洞修復(fù)的解決方法

更新時(shí)間：2025年04月17日 09:57:45 作者：高建偉-joe

本文主要介紹了SpringBoot Tomcat漏洞修復(fù)的解決方法,文中通過(guò)示例代碼介紹的非常詳細(xì),對(duì)大家的學(xué)習(xí)或者工作具有一定的參考學(xué)習(xí)價(jià)值,需要的朋友們下面隨著小編來(lái)一起學(xué)習(xí)學(xué)習(xí)吧

Apache Tomcat 遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2025-24813)

Tomcat 是一個(gè)開(kāi)源的、輕量級(jí)的 Web 應(yīng)用服務(wù)器和 Servlet 容器。它由 Apache 軟件基金會(huì)下的 Jakarta 項(xiàng)目開(kāi)發(fā)，是目前最流行的 Java Web 服務(wù)器之一。

該漏洞利用條件較為復(fù)雜，需同時(shí)滿(mǎn)足以下四個(gè)條件：

應(yīng)用程序啟用了 DefaultServlet 寫(xiě)入功能，該功能默認(rèn)關(guān)閉。
應(yīng)用支持了 partial PUT 請(qǐng)求，能夠?qū)阂獾男蛄谢瘮?shù)據(jù)寫(xiě)入到會(huì)話文件中，該功能默認(rèn)開(kāi)啟。
應(yīng)用使用了 Tomcat 的文件會(huì)話持久化并且使用了默認(rèn)的會(huì)話存儲(chǔ)位置，需要額外配置。
應(yīng)用中包含一個(gè)存在反序列化漏洞的庫(kù)，比如存在于類(lèi)路徑下的 commons-collections，此條件取決于業(yè)務(wù)實(shí)現(xiàn)是否依賴(lài)存在反序列化利用鏈的庫(kù)。

漏洞威脅等級(jí)：高危

受影響的版本

11.0.0-M1 <= Apache Tomcat <= 11.0.2
10.1.0-M1 <= Apache Tomcat <= 10.1.34
9.0.0.M1 <= Apache Tomcat <= 9.0.98

安全版本

Apache Tomcat >= 11.0.3
Apache Tomcat >= 10.1.35
Apache Tomcat >= 9.0.99

關(guān)鍵配置

項(xiàng)目結(jié)構(gòu)

demo_project
├─module
│  ├─src
│  │  └─main
|  └─pom.xml
└─pom.xml

項(xiàng)目根路徑下的 pom.xml

<?xml version="1.0" encoding="UTF-8"?>
<project xmlns="http://maven.apache.org/POM/4.0.0"
         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
	<modelVersion>4.0.0</modelVersion>

  <groupId>cn.demo</groupId>
  <artifactId>demo</artifactId>
  <version>1.0.0</version>

  <name>demo</name>
  <description>demo</description>

  <properties>
    <demo.version>1.0.0</demo.version>
    <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
    <project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
    <java.version>1.8</java.version>
    
    <tomcat.version>9.0.99</tomcat.version>
    <jakarta.annotation-api.version>1.3.5</jakarta.annotation-api.version>
  </properties>

  <!-- 依賴(lài)聲明 -->
  <dependencyManagement>
    <dependencies>
      <!-- SpringBoot的依賴(lài)配置-->
      <dependency>
        <groupId>org.springframework.boot</groupId>
        <artifactId>spring-boot-dependencies</artifactId>
        <version>2.5.14</version>
        <type>pom</type>
        <scope>import</scope>
      </dependency>

      <!-- 解決Apache Tomcat 遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2025-24813)-->
      <dependency>
        <groupId>org.apache.tomcat.embed</groupId>
        <artifactId>tomcat-embed-core</artifactId>
        <version>${tomcat.version}</version>
      </dependency>
      <dependency>
        <groupId>org.apache.tomcat.embed</groupId>
        <artifactId>tomcat-embed-el</artifactId>
        <version>${tomcat.version}</version>
      </dependency>
      <dependency>
        <groupId>org.apache.tomcat.embed</groupId>
        <artifactId>tomcat-embed-websocket</artifactId>
        <version>${tomcat.version}</version>
        <exclusions>
          <exclusion>
            <artifactId>tomcat-annotations-api</artifactId>
            <groupId>org.apache.tomcat</groupId>
          </exclusion>
        </exclusions>
      </dependency>
        <dependency>
          <groupId>jakarta.annotation</groupId>
          <artifactId>jakarta.annotation-api</artifactId>
          <version>${jakarta.annotation-api.version}</version>
        </dependency>
    </dependencies>
  </dependencyManagement>

  <modules>
    <module>module</module>
  </modules>

  <packaging>pom</packaging>

  <dependencies>
  </dependencies>

  <build>
      <plugins>
        <plugin>
          <groupId>org.apache.maven.plugins</groupId>
          <artifactId>maven-compiler-plugin</artifactId>
          <version>3.8.1</version>
          <configuration>
            <source>${java.version}</source>
            <target>${java.version}</target>
            <encoding>${project.build.sourceEncoding}</encoding>
            <parameters>true</parameters>
          </configuration>
        </plugin>
      </plugins>
      <resources>
        <resource>
          <directory>src/main/resources</directory>
          <filtering>true</filtering>
        </resource>
        <resource>
          <directory>src/main/java</directory>
          <includes>
            <include>**/*.xml</include>
          </includes>
        </resource>
      </resources>
  </build>
</project>

module 目錄下的 pom.xml

<?xml version="1.0" encoding="UTF-8"?>
<project xmlns="http://maven.apache.org/POM/4.0.0"
         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
    <parent>
        <artifactId>demo</artifactId>
        <groupId>cn.demo</groupId>
        <version>1.0.0</version>
    </parent>
    <modelVersion>4.0.0</modelVersion>

    <artifactId>module</artifactId>

    <description>
        module模塊
    </description>

    <dependencies>
		  <!-- SpringBoot Web容器 -->
        <dependency>
          <groupId>org.springframework.boot</groupId>
          <artifactId>spring-boot-starter-web</artifactId>
          <exclusions>
            <exclusion>
              <groupId>org.apache.logging.log4j</groupId>
            <artifactId>log4j-api</artifactId>
            </exclusion>
              <exclusion>
                <groupId>org.springframework.boot</groupId>
                <artifactId>spring-boot-starter-tomcat</artifactId>
              </exclusion>
          </exclusions>
      </dependency>

      <!-- websocket -->
      <dependency>
        <groupId>org.springframework.boot</groupId>
        <artifactId>spring-boot-starter-websocket</artifactId>
        <exclusions>
          <exclusion>
            <groupId>org.springframework.boot</groupId>
            <artifactId>spring-boot-starter-tomcat</artifactId>
          </exclusion>
        </exclusions>
      </dependency>
      <dependency>
        <groupId>org.apache.tomcat.embed</groupId>
        <artifactId>tomcat-embed-core</artifactId>
        <exclusions>
          <exclusion>
            <artifactId>tomcat-annotations-api</artifactId>
            <groupId>org.apache.tomcat</groupId>
          </exclusion>
        </exclusions>
      </dependency>
      <dependency>
        <groupId>org.apache.tomcat.embed</groupId>
        <artifactId>tomcat-embed-el</artifactId>
      </dependency>
      <dependency>
        <groupId>org.apache.tomcat.embed</groupId>
        <artifactId>tomcat-embed-websocket</artifactId>
        <exclusions>
          <exclusion>
            <artifactId>tomcat-annotations-api</artifactId>
            <groupId>org.apache.tomcat</groupId>
          </exclusion>
        </exclusions>
      </dependency>
      <dependency>
        <groupId>jakarta.annotation</groupId>
        <artifactId>jakarta.annotation-api</artifactId>
      </dependency>
    </dependencies>
</project>