Apache Tomcat 7.0.x before 7.0.68 or 8.0.x before 8.0.32 is affected by multiple vulnerabilities :
Binary data 9313.prm
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5351
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0763
svn.apache.org/viewvc?view=rev&rev=1720658
svn.apache.org/viewvc?view=rev&rev=1720660
svn.apache.org/viewvc?view=rev&rev=1720661
svn.apache.org/viewvc?view=rev&rev=1720663
tomcat.apache.org/security-7.html
tomcat.apache.org/security-8.html