{"schema_version": "1.6.1", "id": "CVE-2022-40664", "summary": "Authentication Bypass Vulnerability in Shiro when forwarding or including via RequestDispatcher", "details": "Apache Shiro before 1.10.0, Authentication Bypass Vulnerability in Shiro when forwarding or including via RequestDispatcher.", "affected": [{"ranges": [{"type": "SEMVER", "events": [{"introduced": "Apache Shiro"}, {"fixed": "1.10.0"}]}]}], "references": [{"type": "ADVISORY", "url": "https://lists.apache.org/thread/loc2ktxng32xpy7lfwxto13k4lvnhjwg"}]}