VDB

GSD-2020-1957

GSD-2020-1957 PUBLISHED

Apache Shiro before 1.5.2, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass.

Affected Products

VendorProductVersions
n/aApache ShiroApache Shiro to 1.5.2

Timeline

  • Mar 25, 2020 CVE Published

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›