CVE-2021-38241 Information

Description

Deserialization issue discovered in Ruoyi before 4.6.1 allows remote attackers to run arbitrary code via weak cipher in Shiro framework.

Reference

https://www.du1ge.com/archives/CVE-2021-38241