Apache Shiro before 1.6.0, when using Apache Shiro, a specially crafted HTTP request may cause an authentication bypass.
References
Configurations
History
31 Mar 2022, 02:01
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | (MLIST) https://lists.apache.org/thread.html/r852971e28f54cafa7d325bd7033115c67d613b112a2a1076817390ac@%3Cdev.shiro.apache.org%3E - Mailing List, Vendor Advisory | |
CPE | cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* |
03 Aug 2021, 04:15
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo |
Information
Published : 2020-08-17 21:15
Updated : 2024-02-04 21:00
NVD link : CVE-2020-13933
Mitre link : CVE-2020-13933
CVE.ORG link : CVE-2020-13933
JSON object : View
Products Affected
debian
- debian_linux
apache
- shiro
CWE