CVE-2021-41303: shiro: specially crafted HTTP request may cause an authentication bypass

Severity: Critical

CVSS Score: 9.8

Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass. Users should update to Apache Shiro 1.8.0.