CVE-2020-17523: shiro: Authentication bypass through specially crafted HTTP request

Severity: Critical

CVSS Score: 9.8

Apache Shiro before 1.7.1, when using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass.