Lucene search
Broadcom Security ResponseBSNSA22449HistoryAug 29, 2023 - 12:00 a.m.
Apache Shiro before 1.10.0, Authentication Bypass Vulnerability in Shiro when forwarding or including via RequestDispatcher.
2023-08-2900:00:00
Broadcom Security Response
support.broadcom.com
6
apache shiro
authentication bypass
vulnerability
requestdispatcher
Apache Shiro contains an authentication bypass vulnerability when it is forwarding or including requests usingRequestDispatchercomponent. This could allow an attacker to gain unauthorized access to the application.
| CPE | Name | Operator | Version |
|---|---|---|---|
| brocade sannav | lt | 2.2.0 | |
| brocade sannav | lt | 2.2.2a |
Related
prion
prion
Authentication flaw
2022-10-12 07:15:00
osv
osv
CVE-2022-40664
2022-10-12 07:15:09
Apache Shiro Authentication Bypass vulnerability
2022-10-12 12:00:16
github
github
Apache Shiro Authentication Bypass vulnerability
2022-10-12 12:00:16
f5
f5
K30671731 : Apache Shiro vulnerability CVE-2022-40664
2022-10-26 00:00:00
cnvd
cnvd
Apache Shiro Authentication Bypass Vulnerability (CNVD-2022-68497)
2022-10-13 00:00:00
veracode
veracode
Authentication Bypass
2022-10-13 17:34:12
cve
cve
CVE-2022-40664
2022-10-12 07:15:09
nessus
nessus
Apache Shiro < 1.10.0 Authentication Bypass
2022-10-28 00:00:00
Oracle WebCenter Sites (Jan 2023 CPU)
2023-01-20 00:00:00
cvelist
cvelist
ibm
ibm
Security Bulletin: IBM Sterling Partner Engagement Manager is vulnerable to security bypass due to Apache Shiro (CVE-2022-40664)
2023-01-10 10:50:50
redhatcve
redhatcve
CVE-2022-40664
2023-05-05 18:19:35
ubuntucve
ubuntucve
CVE-2022-40664
2022-10-12 00:00:00
debiancve
debiancve
CVE-2022-40664
2022-10-12 07:15:09
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00