Apache Software Foundation has released a security advisory to address a vulnerability in the Apache Tomcat. A local attacker could exploit the vulnerability in the Tomcat server used FileStore for session persistence by sending a specially crafted request.
A successful exploitation of the vulnerability could lead to privilege escalation on an affected system.
Apache Software Foundation has released new version of the products to address the issue and they can be downloaded at the following URLs: