A vulnerability, which was classified as critical, was found in Apache Shiro up to 1.12.x/2.0.0-alpha-3. This affects an unknown part. The manipulation leads to path traversal.

This vulnerability is uniquely identified as CVE-2023-46749. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.