Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:27833
HistoryNov 06, 2020 - 7:16 a.m.

Authentication Bypass

2020-11-0607:16:36
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
shiro-spring-boot-web-starter software vulnerability http request

EPSS

0.032

Percentile

91.4%

shiro-spring-boot-web-starter is vulnerable to authentication bypass. An attacker is able to bypass authentication via a malicious HTTP request.

Affected configurations

Vulners
Node
redhatsupport_for_spring_bootRange1.6.0
VendorProductVersionCPE
redhatsupport_for_spring_boot*cpe:2.3:a:redhat:support_for_spring_boot:*:*:*:*:*:*:*:*

References