Lucene search
PRIOn knowledge basePRION:CVE-2023-34478HistoryJul 24, 2023 - 7:15 p.m.
Path traversal
2023-07-2419:15:00
PRIOn knowledge base
www.prio-n.com
16
apache shiro
path traversal
vulnerability
authentication bypass
update
nvd
Apache Shiro, before 1.12.0 or 2.0.0-alpha-3, may be susceptible to a path traversal attack that results in an authentication bypass when used together with APIs or other web frameworks that route requests based on non-normalized requests.
Mitigation:Β Update to Apache Shiro 1.12.0+ or 2.0.0-alpha-3+
| CPE | Name | Operator | Version |
|---|---|---|---|
| shiro | eq | 2.0.0 alpha2 | |
| shiro | eq | 2.0.0 alpha1 | |
| shiro | lt | 1.12.0 |
Related
broadcom
broadcom
ubuntucve
ubuntucve
CVE-2023-34478
2023-07-24 00:00:00
veracode
veracode
Path Traversal
2023-07-26 12:52:26
Path Traversal
2023-07-26 04:05:08
debiancve
debiancve
CVE-2023-34478
2023-07-24 19:15:10
cvelist
cvelist
nvd
nvd
CVE-2023-34478
2023-07-24 19:15:10
github
github
Path Traversal in Apache Shiro
2023-07-24 21:30:39
ibm
ibm
cve
cve
CVE-2023-34478
2023-07-24 19:15:10
osv
osv
Path Traversal in Apache Shiro
2023-07-24 21:30:39
CVE-2023-34478
2023-07-24 19:15:10
cnvd
cnvd
Apache Shiro Path Traversal Vulnerability
2023-07-30 00:00:00