A critical remote code execution (RCE) vulnerability, CVE-2025-24813, has been identified in Apache Tomcat, enabling attackers to take control of servers using a simple PUT request. Alarmingly, a public proof-of-concept (PoC) exploit was released just 30 hours after disclosure, leading to exploitation in the wild. To stay protected, update Apache Tomcat to the latest patched version immediately.