Apache Tomcat Users Team,

The purpose of this email is to request information regarding Apache Tomcat
CVE-2018-8037 <https://www.securityfocus.com/bid/104894/info> possibly
affecting version 8.0.X (particularly 8.0.53). The CVE was made public on
22-July-2018, after being privately disclosed on 16-Jun-2018. The EOL date
of Tomcat 8.0.X was 30-Jun-2018.

Reaching out to you to get confirmation on whether the CVE is confirmed to
not affect the version 8.0.X or if the CVE was not tested against such
version at all as its EOL date preceded the public disclosure.

Your help on this matter would be greatly appreciated.


Reply via email to