Apache Tomcat CVE-2018-8034 Certificate Validation Bypass Vulnerability

description-logoDescription

The host name verification when using TLS with the WebSocket client was missing. It is now enabled by default.

affected-products-logoAffected Applications

Apache Tomcat

CVE References

CVE-2018-8034