We are trying to find out which java version is used in the OO tomcat server to discard a vulnerability.

We are trying to find out which java version is used in the OO tomcat server to discard a vulnerability.

Does anyone know where can we find this?

Can we confirm to Update Tomcat from apache-tomcat-7.0.88  to a later version " activities on server hpoo to eliminate security vulnerabilities on that server to comply with the company securities ??