Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Improper Authentication in Apache Shiro

🗓️ 07 May 2021 15:18:53Reported by GitHub Advisory DatabaseType 
github
 github🔗 github.com👁 33 Views

Improper Authentication in Apache Shiro when using with Spring dynamic controller

Show more
Related
Detection
Refs
ReporterTitlePublishedViews
Family
Veracode		Authentication Bypass
25 Mar 202003:09
veracode
OSV		shiro - security update
19 Apr 202000:00
osv
OSV		Improper Authentication in Apache Shiro
7 May 202115:53
osv
OSV		CVE-2020-1957
25 Mar 202016:15
osv
OSV		shiro vulnerabilities
18 Feb 202120:35
osv
OSV		shiro - security update
8 Jul 202000:00
osv
Debian		[SECURITY] [DLA 2181-1] shiro security update
19 Apr 202009:31
debian
Debian		[SECURITY] [DLA 2273-1] shiro security update
8 Jul 202014:55
debian
OpenVAS		Debian: Security Advisory (DLA-2181-1)
20 Apr 202000:00
openvas
OpenVAS		Ubuntu: Security Advisory (USN-4740-1)
19 Feb 202100:00
openvas
Rows per page
Vulners
Node
org.apache.shiroshiro\-coreRange<1.5.2
SourceLink
nvdwww.nvd.nist.gov/vuln/detail/CVE-2020-1957
listswww.lists.apache.org/thread.html/r17f371fc89d34df2d0c8131473fbc68154290e1be238895648f5a1e6%40%3Cdev.shiro.apache.org%3E
listswww.lists.apache.org/thread.html/r2d2612c034ab21a3a19d2132d47d3e4aa70105008dd58af62b653040@%3Ccommits.shiro.apache.org%3E
listswww.lists.apache.org/thread.html/rab1972d6b177f7b5c3dde9cfb0a40f03bca75f0eaf1d8311e5762cb3@%3Ccommits.shiro.apache.org%3E
listswww.lists.apache.org/thread.html/rb3982edf8bc8fcaa7a308e25a12d294fb4aac1f1e9d4e14fda639e77@%3Cdev.geode.apache.org%3E
listswww.lists.apache.org/thread.html/rc64fb2336683feff3580c3c3a8b28e80525077621089641f2f386b63@%3Ccommits.camel.apache.org%3E
listswww.lists.apache.org/thread.html/rc8b39ea8b3ef71ddc1cd74ffc866546182683c8adecf19c263fe7ac0@%3Ccommits.shiro.apache.org%3E
listswww.lists.debian.org/debian-lts-announce/2020/04/msg00014.html
githubwww.github.com/advisories/GHSA-26gr-cvq3-qxgf

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
07 May 2021 15:53Current
9High risk
Vulners AI Score9
CVSS27.5
CVSS39.8
EPSS0.00845
CWE-287
apache shiroauthentication bypassspring dynamic controllers
33
.json
Report