Tomcat security bypass CVE-2018-1305
Issue
The CVE-2018-1305 was assigned to a security bypass flaw in Tomcat. This flaw allowed the @ServletSecurity annotation configuration for a Servlet to be ignored. This flaw affects Tomcat 7,8 and 9.
Environment
Red Hat Enterprise Linux 7
Red Hat JBoss Web Server 3.1
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.