Lucene search
+L

4 matches found

Circl
Circl
added 2026/05/26 8:51 a.m.9 views

CVE-2026-43828

creationtimestamp| type| source ---|---|--- 2026-05-26 08:51:26+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmqmgui6pf24...

6.5CVSS5.8AI score0.00272EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-43828

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Default configurations of Apache Shiro send sensitive cookies in HTTPS session without 'Secure' attribute. This issue affects Apache Shiro from 1.0 to 2.1.0, an...

6.5CVSS5.8AI score0.00272EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/05/25 11:19 p.m.8 views

ca.ibodrov.concord:mcp-for-concord (>=0.0.1 <=0.0.2), ca.ibodrov.concord:testcontainers-concord-core (>=2.0.3 <=2.0.5) +182 more potentially affected by CVE-2026-43828 via org.apache.shiro:shiro-web (>=2.0.0-alpha-1 <=2.1.0)

org.apache.shiro:shiro-web MAVEN version =2.0.0-alpha-1, =0.0.1, =2.0.3, =0.0.27, =0.0.27, =0.0.27, =8.0.0, =8.0.0, =1.0.2, =3.4.0, =3.3.0, =3.3.0, =3.3.0, =3.3.0, =3.3.0, =3.8.0 and more Source cves: CVE-2026-43828 Source advisory: SNYK:JAVA-ORGAPACHESHIRO-17116502...

6.5CVSS5.7AI score0.00272EPSS
Exploits0
OSV
OSV
added 2026/05/25 9:16 p.m.10 views

DEBIAN-CVE-2026-43828

Default configurations of Apache Shiro send sensitive cookies in HTTPS session without 'Secure' attribute. This issue affects Apache Shiro from 1.0 to 2.1.0, and 3.0.0-alpha-1. Users are recommended to upgrade to version 2.1.1, or 3.0.0-alpha-2 or later, which fixes the issue. In the affected...

6.5CVSS5.8AI score0.00272EPSS
Exploits0References1
Rows per page
Query Builder