Lucene search
+L

6 matches found

Tenable Nessus
Tenable Nessus
•added 2022/06/01 12:0 a.m.•32 views

Apache Shiro < 1.8.0 Authentication Bypass

Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. C Tenable, Inc...

9.8CVSS8.3AI score0.76658EPSS
Exploits0References2
OSV
OSV
•added 2021/09/17 9:15 a.m.•24 views

CVE-2021-41303

Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass. Users should update to Apache Shiro 1.8.0...

9.8CVSS6.9AI score
Exploits0References4
NVD
NVD
•added 2021/09/17 9:15 a.m.•25 views

CVE-2021-41303

Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass. Users should update to Apache Shiro 1.8.0...

9.8CVSS0.76658EPSS
Exploits0References4
CVE
CVE
•added 2021/09/17 8:20 a.m.•134 views

CVE-2021-41303

Apache Shiro prior to 1.8.0 (when used with Spring Boot) is affected by an authentication bypass via specially crafted HTTP requests. The CVE-2021-41303 entry notes a high/critical impact (C:H/I:H/A:H in CVSS 3.1) and recommends upgrading to Apache Shiro 1.8.0 or later to remediate. Connected doc...

9.8CVSS9.4AI score0.76658EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
•added 2021/09/17 8:20 a.m.•29 views

CVE-2021-41303 Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass

Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass. Users should update to Apache Shiro 1.8.0...

9.7AI score0.76658EPSS
Exploits0References4
Debian CVE
Debian CVE
•added 2021/09/17 8:20 a.m.•62 views

CVE-2021-41303

Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass. Users should update to Apache Shiro 1.8.0...

9.8CVSS9.6AI score0.76658EPSS
Exploits0
Rows per page
Query Builder