On 10/13/2021 11:16 AM, Kenaw, Seretseab wrote:
Hello,Our IT team just notified us with a severe security vulnerability on our web application with the Tomcat version that we are using (9.0.12). What remediations can we use to quickly fix the issue? Thank you Seretseab Kenaw CONFIDENTIALITY NOTICE: This e-mail communication and any attachments may contain proprietary and privileged information for the use of the designated recipients named above. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.
Update.Your version of Tomcat is over 3 years old. There are multiple security vulnerabilities that have been addressed since then.
See: https://tomcat.apache.org/security-9.html . . . just my two cents /mde/
OpenPGP_signature
Description: OpenPGP digital signature
