CVE-2021-31407

Published: 2021-04-23T16:15Z

Last Modified: 2024-11-21T06:05Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Vulnerability in OSGi integration in com.vaadin:flow-server versions 1.2.0 through 2.4.7 (Vaadin 12.0.0 through 14.4.9), and 6.0.0 through 6.0.1 (Vaadin 19.0.0) allows attacker to access application classes and resources on the server via crafted HTTP request. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt