The version of Apache Tomcat installed on the remote host is < 10.1.0-M10. It is, therefore, affected by multiple vulnerabilities as referenced in the fixed_in_apache_tomcat_10.1.0-m10_security-10 advisory. Note that Nessus Network Monitor has not tested for this issue but has instead relied only on the applicationβs self-reported version number.
Binary data 701387.pasl