Apache Tomcat CVE-2021-24122 vulnerability for DX Spectrum

book

Article ID: 206969

calendar_today

Updated On:

Products

CA Spectrum

Issue/Introduction

The following vulnerability was reported for apache tomcat versions:

Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106

Environment

Release : 20.2.0, 20.2.3, 20.2.5

Component : Spectrum Core / SpectroSERVER

Resolution

Spectrum 20.2.7 (10.4.3) will ship with tomcat 9.0.41. This version will be free from the reported vulnerability.

Additional Information

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24122