Versions of Tomcat 7.0.x earlier than 7.0.11 are potentially affected by a security bypass vulnerability. When a web application is started, βServletSecurityβ annotations might be ignored which could lead to some areas of the application not being protected as expected.
Binary data 800610.prm