Skip to main content

Flow Server

1 CVEs product

Monthly

CVE-2021-33604 Maven LOW PATCH Monitor

URL encoding error in development mode handler in com.vaadin:flow-server versions 2.0.0 through 2.6.1 (Vaadin 14.0.0 through 14.6.1), 3.0.0 through 6.0.9 (Vaadin 15.0.0 through 19.0.8) allows local. Rated low severity (CVSS 2.5), this vulnerability is no authentication required.

RCE Flow Server Vaadin
NVD GitHub
CVSS 3.1
2.5
EPSS
0.3%
EPSS 0% CVSS 2.5
LOW PATCH Monitor

URL encoding error in development mode handler in com.vaadin:flow-server versions 2.0.0 through 2.6.1 (Vaadin 14.0.0 through 14.6.1), 3.0.0 through 6.0.9 (Vaadin 15.0.0 through 19.0.8) allows local. Rated low severity (CVSS 2.5), this vulnerability is no authentication required.

RCE Flow Server Vaadin
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy