SynopsisApache Tomcat 9.0.0.M1 < 9.0.5 Security Constraint Weakness
DescriptionThe version of Apache Tomcat installed on the remote host is 9.0.x prior to 9.0.5. It is, therefore, affected by security constraints flaws which could expose resources to unauthorized users.
Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.
SolutionUpgrade to Apache Tomcat version 9.0.5 or later.