Vulnerability Database
289,599
Total vulnerabilities in the database
CVE-2022-40664
Apache Shiro before 1.10.0, Authentication Bypass Vulnerability in Shiro when forwarding or including via RequestDispatcher.
| Software | From | Fixed in |
|---|---|---|
| apache / shiro | - | 1.10.0 |
org.apache.shiro / shiro-core
|
- | 1.10.0 |
- http://www.openwall.com/lists/oss-security/2022/10/12/1
- http://www.openwall.com/lists/oss-security/2022/10/12/2
- http://www.openwall.com/lists/oss-security/2022/10/13/1
- https://lists.apache.org/thread/loc2ktxng32xpy7lfwxto13k4lvnhjwg
- https://security.netapp.com/advisory/ntap-20221118-0005/
- https://shiro.apache.org/blog/2022/10/10/2022/apache-shiro-1101-released.html