Lucene search
Veracode Vulnerability DatabaseVERACODE:33026HistoryNov 18, 2021 - 8:45 a.m.
Privilege Escalation
2021-11-1808:45:08
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.932 High
EPSS
Percentile
99.1%
shenyu-admin is vulnerable to privilege escalation. The vulnerability exists due to an incorrect use of JWT in ShenyuAdminBootstrap allows an attacker to bypass authentication.
| CPE | Name | Operator | Version |
|---|---|---|---|
| shenyu-admin | eq | 2.4.0 | |
| shenyu-admin | eq | 2.4.0 |
Related
cve
cve
CVE-2021-37580
2021-11-16 10:15:07
checkpoint_advisories
checkpoint_advisories
Apache ShenYu Admin Authentication Bypass (CVE-2021-37580)
2021-12-28 00:00:00
cvelist
cvelist
CVE-2021-37580 Apache ShenYu Admin bypass JWT authentication
2021-11-16 09:35:11
nvd
nvd
CVE-2021-37580
2021-11-16 10:15:07
githubexploit
githubexploit
Exploit for Improper Authentication in Apache Shenyu
2021-11-19 09:00:37
Exploit for Improper Authentication in Apache Shenyu
2021-11-19 08:21:44
Exploit for Improper Authentication in Apache Shenyu
2021-11-19 06:49:35
cnvd
cnvd
Apache ShenYu licensing issue vulnerability
2021-11-17 00:00:00
osv
osv
CVE-2021-37580
2021-11-16 10:15:07
Improper Authentication in Apache ShenYu Admin
2021-11-17 23:15:30
github
github
Improper Authentication in Apache ShenYu Admin
2021-11-17 23:15:30
prion
prion
Authentication flaw
2021-11-16 10:15:00
nuclei
nuclei
Apache ShenYu Admin JWT - Authentication Bypass
2021-11-18 20:08:23