Potential Risk of CVE Security Alerts! July the 22nd the Apache Tomcat team released three security vulnerabilities. July 24, 2018 admin CVE-2018-8037: User sessions can get mixed up CVE-2018-1336: Denial Of Service (DoS) via UTF-8 decoder CVE-2018-8034: No host name verification in WebSocket client https://tomcat.apache.org/security-9.html