CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-17523

Apache Shiro before 1.7.1, when using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.888

EPSS Ranking 99.5%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 9.0

References

Products affected by CVE-2020-17523

Apache » Shiro » Version: N/A

cpe:2.3:a:apache:shiro:-
Apache » Shiro » Version: 1.1.0

cpe:2.3:a:apache:shiro:1.1.0
Apache » Shiro » Version: 1.2.0

cpe:2.3:a:apache:shiro:1.2.0
Apache » Shiro » Version: 1.2.1

cpe:2.3:a:apache:shiro:1.2.1
Apache » Shiro » Version: 1.2.2

cpe:2.3:a:apache:shiro:1.2.2
Apache » Shiro » Version: 1.2.3

cpe:2.3:a:apache:shiro:1.2.3
Apache » Shiro » Version: 1.2.4

cpe:2.3:a:apache:shiro:1.2.4
Apache » Shiro » Version: 1.2.5

cpe:2.3:a:apache:shiro:1.2.5
Apache » Shiro » Version: 1.2.6

cpe:2.3:a:apache:shiro:1.2.6
Apache » Shiro » Version: 1.3.0

cpe:2.3:a:apache:shiro:1.3.0
Apache » Shiro » Version: 1.3.1

cpe:2.3:a:apache:shiro:1.3.1
Apache » Shiro » Version: 1.3.2

cpe:2.3:a:apache:shiro:1.3.2
Apache » Shiro » Version: 1.4.0

cpe:2.3:a:apache:shiro:1.4.0
Apache » Shiro » Version: 1.4.1

cpe:2.3:a:apache:shiro:1.4.1
Apache » Shiro » Version: 1.4.2

cpe:2.3:a:apache:shiro:1.4.2
Apache » Shiro » Version: 1.5.0

cpe:2.3:a:apache:shiro:1.5.0
Apache » Shiro » Version: 1.5.1

cpe:2.3:a:apache:shiro:1.5.1
Apache » Shiro » Version: 1.5.2

cpe:2.3:a:apache:shiro:1.5.2
Apache » Shiro » Version: 1.5.3

cpe:2.3:a:apache:shiro:1.5.3
Apache » Shiro » Version: 1.6.0

cpe:2.3:a:apache:shiro:1.6.0
Apache » Shiro » Version: 1.7.0

cpe:2.3:a:apache:shiro:1.7.0

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved