The host is installed with Apache Tomcat 7.0.79 before 7.0.83, 8.5.16 before 8.5.24, 8.0.45 before 8.0.48 or 9.0.0.M22 before 9.0.2 and is prone to a CGI search algorithm vulnerability. A flaw is present in an updated description of the search algorithm used by the CGI Servlet to identify which script to execute. Successful exploitation may cause some scripts to fail execution as expected and other scripts may be executed unexpectedly.