The Apache Foundation has released security updates to address vulnerabilities in earlier version (9.0.0.M9 to 9.0.9) of Apache Tomcat. If left unpatched, attackers could exploit them and gain complete control of the system.
Therefore, BtCIRT recommends users and administrators to review Apache Security Update- 9.0.9 for more details and apply necessary updates.
Patch and be protected.