A security vulnerability has been identified in the catalina.jar file located within the /opt/CA/WorkloadAutomationAE/webserver/lib/ directory. Can this file be replaced on its own ?

AutoSys Workload Automation

Just replacing the catalina.jar file on its own, to address this vulnerability is not a supported solution. Attempting to do so will lead to dependency failures and prevent the webserver/WCC from starting correctly.

To address the catalina.jar vulnerability, a full upgrade of the Tomcat webserver in /opt/CA/WorkloadAutomationAE/webserver directory to a newer version of Tomcat is required.

Follow these steps:

1. Download the appropriate Tomcat 9.0 version 
2. Follow the steps outlined in the Broadcom documentation to upgrade Tomcat