gt; Subject: Re: Apache Tomcat 8.5.82 Release Date
>
> To whom it may concern,
>
> On 8/2/22 01:28, Wai Siang, Chu wrote:
> > Dear Apache Tomcat Team,
> >
> > Based on the previous email reply,
> > may we have an update regarding the estimated release date for
Tomcat XSS in examples web application* CVE-2022-34305
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34305>
Hence, may we check is there an estimated timeline for the *Apache
Tomcat
8.5.82* release date?
Why?
Have you reviewed the vulnerability? It is a XSS in the examples a
ersion.
> >>>
> >>> *Low: Apache Tomcat XSS in examples web application* CVE-2022-34305
> >>> <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34305>
> >>>
> >>> Hence, may we check is there an estimated timeline for the
mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34305>
Hence, may we check is there an estimated timeline for the *Apache Tomcat
8.5.82* release date?
Why?
Have you reviewed the vulnerability? It is a XSS in the examples app.
The examples app should never be deployed in a production en
lnerability found in the latest 8.5.xx version.
> >
> > *Low: Apache Tomcat XSS in examples web application* CVE-2022-34305
> > <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34305>
> >
> > Hence, may we check is there an estimated timeline for the *Apa
check is there an estimated timeline for the *Apache Tomcat
8.5.82* release date?
Why?
Have you reviewed the vulnerability? It is a XSS in the examples app.
The examples app should never be deployed in a production environment.
Hence this vulnerability should be a non-issue for (nearly?) all
meline for the *Apache Tomcat
8.5.82* release date?
Thank you.
Regards,
Wai Siang
D: -
M: (65) 9821 0409
T: (65) 6837 2822
F: (65) 6756 3839
E : waisi...@toppanecquaria.com
11 Toa Payoh Lorong 3
#02-31 Block C, Jackson Square
Singapore 319579
Toppan Ecquaria Pte. Ltd.
Company Registration No: 1998