Lucene search
ApacheCVELIST:CVE-2022-32532HistoryJun 28, 2022 - 11:20 p.m.
CVE-2022-32532 Authentication Bypass Vulnerability
2022-06-2823:20:11
CWE-863
apache
www.cve.org
Apache Shiro before 1.9.1, A RegexRequestMatcher can be misconfigured to be bypassed on some servlet containers. Applications using RegExPatternMatcher with . in the regular expression are possibly vulnerable to an authorization bypass.
CNA Affected
[
{
"product": "Apache Shiro",
"vendor": "Apache Software Foundation",
"versions": [
{
"status": "affected",
"version": "Before 1.9.1"
}
]
}
]Related
veracode
veracode
Authorization Bypass
2022-06-30 03:16:54
ubuntucve
ubuntucve
CVE-2022-32532
2022-06-29 00:00:00
debiancve
debiancve
CVE-2022-32532
2022-06-29 00:15:10
osv
osv
Improper Authorization in Apache Shiro
2022-06-30 00:00:41
CVE-2022-32532
2022-06-29 00:15:10
redhatcve
redhatcve
CVE-2022-32532
2022-07-14 12:14:20
githubexploit
githubexploit
Exploit for Incorrect Authorization in Apache Shiro
2022-06-29 01:05:33
ibm
ibm
cve
cve
CVE-2022-32532
2022-06-29 00:15:10
prion
prion
Authorization
2022-06-29 00:15:00
nvd
nvd
CVE-2022-32532
2022-06-29 00:15:10
github
github
Improper Authorization in Apache Shiro
2022-06-30 00:00:41
nessus
nessus
Oracle WebCenter Sites (Oct 2022 CPU)
2022-10-21 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00