Lucene search
Broadcom Security ResponseBSNSA23256HistoryApr 16, 2024 - 12:00 a.m.
Apache Shiro, before 1.12.0 or 2.0.0-alpha-3, may be susceptible to a path traversal attack (CVE-2023-34478)
2024-04-1600:00:00
Broadcom Security Response
support.broadcom.com
8
apache shiro
path traversal
vulnerability
authentication bypass
update
software
Apache Shiro, before 1.12.0 or 2.0.0-alpha-3, may be susceptible to a path traversal attack that results in an authentication bypass when used together with APIs or other web frameworks that route requests based on non-normalized requests. Mitigation: Update to Apache Shiro 1.12.0+ or 2.0.0-alpha-3+
Affected configurations
Node
broadcombrocade_sannavRange<2.3.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| brocade sannav | lt | 2.3.1 |
Related
ubuntucve
ubuntucve
CVE-2023-34478
2023-07-24 00:00:00
veracode
veracode
Path Traversal
2023-07-26 12:52:26
Path Traversal
2023-07-26 04:05:08
debiancve
debiancve
CVE-2023-34478
2023-07-24 19:15:10
cvelist
cvelist
nvd
nvd
CVE-2023-34478
2023-07-24 19:15:10
ibm
ibm
github
github
Path Traversal in Apache Shiro
2023-07-24 21:30:39
cve
cve
CVE-2023-34478
2023-07-24 19:15:10
osv
osv
Path Traversal in Apache Shiro
2023-07-24 21:30:39
CVE-2023-34478
2023-07-24 19:15:10
prion
prion
Path traversal
2023-07-24 19:15:00
cnvd
cnvd
Apache Shiro Path Traversal Vulnerability
2023-07-30 00:00:00