Apache Tomcat CVE-2017-12616 Information Disclosure Vulnerability

description-logoDescription

When using a VirtualDirContext it was possible to bypass security constraints and/or view the source code of JSPs for resources served by the VirtualDirContext using a specially crafted request.

affected-products-logoAffected Applications

Apache Tomcat

CVE References

CVE-2017-12616