A flaw was found in Apache ShenYu Admin. The incorrect use of JWT in ShenyuAdminBootstrap allows an attacker to bypass authentication. This issue affected Apache ShenYu 2.3.0 and 2.4.0
CPE | Name | Operator | Version |
---|---|---|---|
incubator-shenyu | eq | 1.0.3 | |
incubator-shenyu | eq | 1.0.5 | |
incubator-shenyu | eq | 1.0.4 | |
incubator-shenyu | eq | 1.0.2 | |
incubator-shenyu | eq | 2.3.0 |