CVE-2016-6802

Опубликовано: 20 сент. 2016

Источник: debian

Описание

Apache Shiro before 1.3.2 allows attackers to bypass intended servlet filters and gain access by leveraging use of a non-root servlet context path.

Пакет	Статус	Версия исправления	Релиз	Тип
shiro	fixed	1.3.2-1		package
shiro	no-dsa		jessie	package

CVE-2016-6802

CVSS3: 7.5

ubuntu

больше 9 лет назад

Apache Shiro before 1.3.2 allows attackers to bypass intended servlet filters and gain access by leveraging use of a non-root servlet context path.

CVE-2016-6802

CVSS3: 5.6

redhat

больше 9 лет назад

Apache Shiro before 1.3.2 allows attackers to bypass intended servlet filters and gain access by leveraging use of a non-root servlet context path.

CVE-2016-6802

CVSS3: 7.5

nvd

больше 9 лет назад

Apache Shiro before 1.3.2 allows attackers to bypass intended servlet filters and gain access by leveraging use of a non-root servlet context path.

GHSA-4q2v-j639-cp7p

CVSS3: 7.5

github

больше 3 лет назад

Improper Access Control in Apache Shiro