The following links can be used as further reference for understanding Apache Tomcat and CVE 2019-0232: https://blog.trendmicro.com/trendlabs-security-intelligence/uncovering-cve-2019-0232-a-remote-code-execution-vulnerability-in-apache-tomcat/ https://github.com/apache/tomcat