CVE-2026-44598 | Apache Shiro up to 2.1.0/3.0.0-alpha-1 Jakarta EE redirect

A vulnerability identified as problematic has been detected in Apache Shiro up to 2.1.0/3.0.0-alpha-1. Affected by this vulnerability is an unknown functionality of the component Jakarta EE Module. This manipulation causes open redirect.

This vulnerability appears as CVE-2026-44598. The attack may be initiated remotely. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More