USN-4740-1: Apache Shiro vulnerabilities
18 February 2021
Apache Shiro could be made to crash if it received specially crafted input.
- shiro - Powerful and easy-to-use Java security framework
It was discovered that Apache Shiro mishandled specially crafted requests. An
attacker could use this vulnerability to bypass authentication mechanisms.