A security scan of CA Output Management Web Viewer 12.1 running with Tomcat 7.0.54 is showing several vulnerabilities.