Is Spectrum affected by the following Apache Tomcat vulnerabilities?