Hi, My organization has a few devices that have the file tomcat-juli-8.5.57.jar installed on them via the program Altair and are showing up as vulnerable to CVE-2019-0232 and CVE-2020-1938, which according to your documentation seems to be fixed for this version of the file. This seems to be an issue with Microsoft Defender being unable to read the version of the file. I was just making sure for our records that this issue has been solved as well as checking to see if you had any recommendations about how we can get this file to stop popping up as vulnerable.
Aidan Jurevich | IT Intern Thornton Tomasetti | 120 Broadway, New York, NY 10271 Mobile +1.303.981.7876 ajurev...@thorntontomasetti.com<mailto:ajurev...@thorntontomasetti.com> | www.ThrontonTomasetti.com<http://www.ThrontonTomasetti.com>