Apache Shiro before 1.7.1, when using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass.
References
Configurations
Information
Published : 2021-02-03 09:15
Updated : 2022-02-22 02:16
NVD link : CVE-2020-17523
Mitre link : CVE-2020-17523
JSON object : View
CWE
CWE-287
Improper Authentication
Products Affected
apache
- shiro