1 results (0.003 seconds)
CVSS: 9.8EPSS: 74%CPEs: 2EXPL: 7
CVSS: 9.8EPSS: 74%CPEs: 2EXPL: 7CVE-2021-37580 – Apache ShenYu Admin bypass JWT authentication
https://notcve.org/view.php?id=CVE-2021-37580
16 Nov 2021 — A flaw was found in Apache ShenYu Admin. The incorrect use of JWT in ShenyuAdminBootstrap allows an attacker to bypass authentication. This issue affected Apache ShenYu 2.3.0 and 2.4.0 Se ha encontrado un fallo en Apache ShenYu Admin. El uso incorrecto de JWT en ShenyuAdminBootstrap permite a un atacante omitir la autenticación. Este problema afecta a Apache ShenYu versiones 2.3.0 y 2.4.0 • https://github.com/fengwenhua/CVE-2021-37580 • CWE-287: Improper Authentication •